Menu
▾
▴
Re: [Openvpn-users] disable "auth-nocache" by push?
|
From: tincanteksup <tin...@gm...> - 2020-05-04 15:44:11
|
Hi, On 04/05/2020 14:06, Jan Just Keijser wrote: > Hi, > > On 04/05/20 14:49, Dajka Tamás wrote: >> >> Hi, >> >> is it possible to disable „auth-nocache” in the client by a PUSH >> message? I mean, if the „auth-nocache” is SET in the client.conf to >> „reenable” credentials caching. What’s the logic behind? When we >> deployed the clients we did set ’auth-nocache’ as a security >> measurement. However, we want to use auth-token now beside OTP, but >> changing all the clients will take some (unneeded) time. >> > no that is not possible; there is no "auth-yescache" option and there's > no code in openvpn to "undo" what ssl_set_auth_nocache() does > >> Secondly, is it allowed/possible to set „reneg-sec” by a PUSH message? >> (reneg-sec is not set currently in the client.conf, has the default >> value of 3600) >> > > should be possible , yes. I see no logic restricting this Unfortunately, not so .. Options error: option 'reneg-sec' cannot be used in this context ([PUSH-OPTIONS]) > > HTH, > > JJK > > > > > _______________________________________________ > Openvpn-users mailing list > Ope...@li... > https://lists.sourceforge.net/lists/listinfo/openvpn-users > |
