Menu
▾
▴
[Openvpn-devel] On saving passwords
|
From: Selva N. <sel...@gm...> - 2016-12-09 17:39:17
|
Hi, A comment on the GUI github page said: "For ISO27001 certification, we are not allowed to let users save their VPN passwords locally. Is there a way to remove or disable the 'save password' box upon authentication ?" Although I suggested to use an up script to delete the saved password, the GUI displaying a checkbox to save password may not be acceptable to some setups. Any idea how widespread a concern is this? Note that the GUI saves it encrypted. Personally I believe not saving passwords encourages users to choose weak passwords, but we could make the GUI respect any --auth-nocache in the config. More info here (https://github.com/OpenVPN/openvpn-gui/issues/105) Thanks, Selva |
