1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

OpenVPN ca.crt

Discussion in 'Tomato Firmware' started by lancethepants, May 3, 2011.

  1. lancethepants

    lancethepants Network Guru Member

    I've setup a VPN using username/password authentication. It's not setup with client key authentication, so I only have to distribute the ca.crt file along with the username/password pair. My question is whether the ca.crt file needs to be private? If someone got a hold of the ca.crt file, could they decrypt and monitor traffic with that alone?
  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Nope. The Certificate Authority certificate is meant to be public. In fact, all of the ".crt" files are safe to be public. The ".key" files are the ones that should be safeguarded.

Share This Page