On 26/06/2020 16:34, tincanteksup wrote: > Comment inline: > > On 26/06/2020 15:29, Richard Bonhomme wrote: >> Signed-off-by: Richard Bonhomme <tincantek...@gmail.com> >> --- >> doc/man-sections/encryption-options.rst | 8 ++++---- >> 1 file changed, 4 insertions(+), 4 deletions(-) >> >> diff --git a/doc/man-sections/encryption-options.rst >> b/doc/man-sections/encryption-options.rst >> index 42c80eb8..076b5fd3 100644 >> --- a/doc/man-sections/encryption-options.rst >> +++ b/doc/man-sections/encryption-options.rst >> @@ -86,5 +86,5 @@ Generating key material >> * Generating *TLS Crypt v2 Server key* >> - Generate a ``--tls-crypt-v2`` key tp be used by an OpenVPN server. >> + Generate a ``--tls-crypt-v2`` key to be used by an OpenVPN server. >> The key is stored in ``keyfile``. >> @@ -127,7 +127,7 @@ Generating key material >> *Note:* >> - This file should be kept secret to the server as anyone that >> - access to this file will be to generate auth tokens that the OpenVPN >> - server will accept as valid. >> + This file should be kept secret to the server as anyone that has > > I don't know if this is correct or if it should read: > This file should be kept secret from the server ..
It wouldn't make sense to keep a (shared) private key used for encryption "secret from the server"; that would make it a bit difficult to use :) I think what was meant was: "This file should be kept secret *on* the server ..." -- kind regards, David Sommerseth OpenVPN Inc
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel