Cov ntawv tso cai kho tau npaj lawm OpenVPN 2.5.2 thiab 2.4.11, ib pob rau kev tsim cov tes hauj lwm ntiag tug virtual, uas tso cai rau koj los npaj kev sib txuas encrypted ntawm ob lub tshuab client lossis muab lub VPN server centralized rau kev ua haujlwm tib lub sijhawm ntawm ntau tus clients. Code OpenVPN faib raws li daim ntawv tso cai GPLv2, cov pob khoom binary npaj txhij tau tsim rau Debian, Ubuntu, CentOS, RHEL thiab Windows.
Cov kev tso tawm tshiab kho qhov tsis zoo (CVE-2020-15078) uas tso cai rau tus neeg tawm tsam nyob deb hla kev lees paub thiab nkag mus rau cov kev txwv kom xau VPN chaw. Qhov teeb meem tsuas yog cuam tshuam rau cov servers uas tau teeb tsa los siv kev lees paub qeeb (deferred_auth). Hauv qee qhov xwm txheej, tus neeg tawm tsam tuaj yeem yuam kom lub server xa rov qab cov lus PUSH_REPLY uas muaj cov chaw. VPN ua ntej xa cov lus AUTH_FAILED. Thaum muab ua ke nrog "--auth-gen-token" parameter lossis tus neeg siv tus kheej token-based authentication scheme, qhov tsis muaj zog tuaj yeem ua rau VPN nkag mus siv siv tus account tsis ua haujlwm.
Ntawm cov kev hloov pauv tsis yog kev ruaj ntseg, cov ntaub ntawv tso tawm txog TLS ciphers uas tau pom zoo rau kev siv los ntawm tus neeg siv khoom tau nthuav dav thiab neeg rau zaub movQhov no suav nrog cov ntaub ntawv tseeb txog TLS 1.3 thiab kev txhawb nqa daim ntawv pov thawj EC. Tsis tas li ntawd, cov ntaub ntawv CRL uas muaj cov npe ntawm cov ntawv pov thawj raug tshem tawm tau ploj lawm thaum lub sijhawm pib. OpenVPN tam sim no raug kho raws li qhov yuam kev uas ua rau muaj kev txiav tawm.
Tau qhov twg los: opennet.ru
