Security
OpenVPN offers several centralized aegis features. It runs in userspace, instead of acute IP assemblage (and accordingly kernel) operation. OpenVPN has the adeptness to bead basis privileges, use mlockall to anticipate swapping acute abstracts to disk, access a chroot bastille afterwards initialization and administer a SELinux ambience afterwards initialization.
OpenVPN runs a custom aegis agreement based on SSL and TLS[2]. OpenVPN offers abutment of acute cards via PKCS#11 based cryptographic tokens.
No comments:
Post a Comment