Changes between Initial Version and Version 1 of Ticket #925, comment 2
- Timestamp:
- 08/08/17 19:32:23 (7 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #925, comment 2
initial v1 7 7 What I think is a far better approach: Have a look at moving the whole OpenVPN management interface code over to a plug-in and expose all the needed features over the plug-in interface. This way we can isolate the risks and stability to a more easily replaceable plug-in. Which could enable other management approaches as well, not just TCP or TLS over TCP. And if the management plug-in is not loaded, there's no management code to exploit by attackers. 8 8 9 But even this effort will quite massive and an intrusive change as well.9 But even this effort will be quite massive and an intrusive change as well. 10 10
