On 15.02.23 16:43, Gert Doering wrote:
I guess this was intended to read "OpenVPN" :-) - and indeed, with tls-auth/tls-crypt, an OpenVPN server is "invisible" unless you know that it's there and have the right key material.
Are you referring with "invisible" to the not shown signature of the openvpn service? I tried and was able to port scan a running openvpn instance but got no signature. So one can tell the port is opened but the attack vector will be big. UDP-Scanning is doable also. To be honest I surely know where the services are located but to get them is just a loop away.
And yes shodan did not show the port is open. _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
