SSL VPNs and OpenVPN: a lot of lies and a shred of truth
When you are working with mature security technologies (like SSL/TLS), security is often a zero sum game. I realize that SSL VPNs are a new paradigm, but when you increase an architecture's feature set, you almost always do it at the expense of security. It is possible to squeeze out small incremental gains, but when someone says they have bumped functionality way up without compromising security, you need to take a closer look to verify these assertions.
By Charlie Hosner at NewsForge.
[ Read more ]