<p dir="ltr">The password only accesses the VPN key. The key sets VPN "strength" based on type of encryption and length as well as establishes user identity as the key is signed. For SSL tunnels, the key is used to establish security for the initial handshakes then SSL protocols take over. A symmetric key is exchanged through the handshake that is long, strong and changeable on a regular basis throughout the life of the tunnel. The best pattern is to expire a symmetric key before enough data has passed to seed a successful crack attempt. Before it expires, a new key is generated and exchanged.</p>
<div class="gmail_quote">On Jul 13, 2013 5:02 PM, "Ron Frazier (ALE)" <<a href="mailto:atllinuxenthinfo@techstarship.com">atllinuxenthinfo@techstarship.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi all,<br>
<br>
I've got a question about vpn operation. I have the following service with <a href="http://hotspotvpn.com" target="_blank">hotspotvpn.com</a>.<br>
<br>
<quote><br>
HotSpotVPN-2 is an OpenVPN based SSL VPN. There are three HotSpotVPN-2 flavors differentiated by encryption; Blowfish 128 bit, AES 192 bit and AES 256bit.<br>
</quote><br>
<br>
I have the Blowfish 128 bit service.<br>
<br>
I've imported the cryptographic credentials to the Open Vpn Client for Android, but also use it on my pc's. When I access the vpn for the first time, I enter my access password, which I allow the client to save.<br>
<br>
The password is good not but incredibly stellar, as in not 45 characters of random gibberish.<br>
<br>
The question is, what effect does the access password have on the security of the tunnel? Does it have any effect at all? Does using a somewhat lesser password make it easier to break into my communications if I'm on public wifi? Or does that just govern access to my account and the strength of the tunnel is the same regardless?<br>
<br>
Hope that makes any sense.<br>
<br>
Also, just as a side note, I'm sitting in a Barnes & Noble right now typing this. I'm using port 443 via udp on the vpn. I notice that it disconnects and reconnects every few minutes. Do you know if these stores do something funny to keep vpns from not working properly. I can run the tunnel at home for no hours with no problem, but have much less reason to use it there.<br>
<br>
Any help is appreciated.<br>
<br>
Sincerely,<br>
<br>
Ron<br>
<br>
<br>
<br>
--<br>
<br>
Sent from my Android Acer A500 tablet with bluetooth keyboard and K-9 Mail.<br>
Please excuse my potential brevity if I'm typing on the touch screen.<br>
<br>
(PS - If you email me and don't get a quick response, you might want to<br>
call on the phone. I get about 300 emails per day from alternate energy<br>
mailing lists and such. I don't always see new email messages very quickly.)<br>
<br>
Ron Frazier<br>
770-205-9422 (O) Leave a message.<br>
linuxdude AT <a href="http://techstarship.com" target="_blank">techstarship.com</a><br>
Litecoin: LZzAJu9rZEWzALxDhAHnWLRvybVAVgwTh3<br>
Bitcoin: 15s3aLVsxm8EuQvT8gUDw3RWqvuY9hPGUU<br>
<br>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
</blockquote></div>