On 10.02.2017 12:17, Jose Novacho wrote: > It seems we are talking about two different things.
I know that and it is deliberate. The things I describe are issues that will, albeit at some arbitrary point in the future, be encountered by you, if you do not fix them now. > I have used the LetsEncrypt certificate to authenticate the server itself. > Peers are using username and password using EAP, that's not an issue. You are still trusting a public CA to not issue another certificate for that server to a malicious third party. -- Mit freundlichen Grüßen/Kind Regards, Noel Kuntze GPG Key ID: 0x63EC6658 Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
