OpenVPN ca.crt

Discussion in 'Tomato Firmware' started by lancethepants, May 3, 2011.

  1. lancethepants

    lancethepants Network Guru Member

    I've setup a VPN using username/password authentication. It's not setup with client key authentication, so I only have to distribute the ca.crt file along with the username/password pair. My question is whether the ca.crt file needs to be private? If someone got a hold of the ca.crt file, could they decrypt and monitor traffic with that alone?
     
  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Nope. The Certificate Authority certificate is meant to be public. In fact, all of the ".crt" files are safe to be public. The ".key" files are the ones that should be safeguarded.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice