Thread: n900, email and openvpn - sweet
View Single Post
deadmalc's Avatar
deadmalc is offline deadmalc
2009-12-19 , 10:10
Posts: 415 | Thanked: 182 times | Joined on Nov 2007 @ Leeds UK
#17
Originally Posted by techdork View Post
If you are *truly* paranoid, how do you see OpenVPN (x509 PKI) being a secure means for creating a tunnel?

SSH (RSA) on a non-standard port with a firewall ACL makes more sense.

Not really, using a non-standard port means script kiddies find it more difficult to find ssh. having ssh open to the web makes me shudder thinking about it.
using firewall acls is not really practical as i want easy access and using an n900 means my ip changes.
port knocking is a possibility, but i want other traffic other than ssh.
smtp, imap, ldap etc.

there is a reason openvpn and ipsec were created....
cant see why you are confused.
__________________
Life on the edge....always waiting to fall