Ideas for securing OpenVPN on an OpenWrt router

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "fedora" <users@xxxxxxxxxxxxxxxxxxxxxxx>
Subject: Ideas for securing OpenVPN on an OpenWrt router
From: erikmccaskey64 <erikmccaskey64@xxxxxxxx>
Date: Tue, 08 Mar 2011 07:34:26 -0800
Delivered-to: users@xxxxxxxxxxxxxxxxxxxxxxx
List-archive: <http://lists.fedoraproject.org/pipermail/users>
List-help: <mailto:[email protected]?subject=help>
List-id: Community support for Fedora users <users.lists.fedoraproject.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=unsubscribe>
Reply-to: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: users-bounces@xxxxxxxxxxxxxxxxxxxxxxx
User-agent: Zoho Mail

ok, i putted an OpenVPN server on port 1194 on an OpenWrt 10.03 router.

https://pastebin.com/raw.php?i=xEZTvnhT

http://pastebin.mozilla.org/1138443

Questions: what could i do to increase security regarding this OpenVPN server? - i mean on server side!

1 - i sed 's/1194/50000/' the port number to a higher one - it's against the automated robots, ok!

2 - iptables? i should only allow ip ranges [on the input chain] that i will use in reality? - ok!

3 - if i don't use my router - e.g.: when i'm sleeping i just turn it off.

4 - ? what else?? Plese write down you're idea/solution!!!

OpenWrt isn't OpenBSD, so from the "ps" command i can see that the OpenVPN is runned by root. it's not so secure. How can i make it more secure?

-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines

Follow-Ups:
- Re: Ideas for securing OpenVPN on an OpenWrt router
  - From: Sam Sharpe

Prev by Date: Re: Any arguments for keeping Yum case-sensitive?
Next by Date: Re: Any arguments for keeping Yum case-sensitive?
Previous by thread: fedora5
Next by thread: Re: Ideas for securing OpenVPN on an OpenWrt router
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux