Hi.
I'm hoping to implement challenge/response ("CR") in Tunnelblick (GUI
for OpenVPN on macOS) and have some questions after reading the
documentation [1];
1. In Dynamic CR, does requiring a response mean that a non-empty
response is required?
2. In Dynamic CR, what is the purpose of _not_ requiring a response?
Is it to display a message without a text input box and have the user
only able to click "OK" or "Cancel" (and disconnect if the user clicks
"Cancel")? Or should I display a text input box but allow the user to
leave it empty (and send an empty "response" to the server?)
3. In Dynamic CR, what is the purpose of passing the username from the
server to the client and then back to the server? For example, am I
supposed to display the username along with the challenge?
4. Are there any conventions about the "challenge" string? For
example, should "\n" be interpreted as a newline?
5. Other than not being a great workflow, is there any problem with
displaying the static CR in a separate dialog after the
username/password have been entered?
Comments and advice will be greatly appreciated!
Thanks in advance,
Jon Bullard
[1] https://github.com/OpenVPN/openvpn/blob/master/doc/management-notes.txt#L983
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
