如果 OpenVPN 提供商的登录密码不安全,那么 openvpn 互联网连接的加密是否也可能被破坏?
问问题
149 次
1 回答
0
No. The transferred data is encrypted by symmetrical encryption, which doesn't depend on the password. However I'm not sure if server certificate is checked during authentification. If yes, then you are secure and the only bad thing is that anyone with your password can connect to that VPN. If server certificate is not checked when using password auth, then this would mean the possibility of MITM (mad in the middle) attack during VPN creation.
于 2013-03-07T13:21:56.280 回答