blob: fc604ce2e58910f42429641907576a0fb91837dd (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
Ideas:
- implement security notice fragment
- explain plain text storage of all data except for android keystore
- explain even more insecure of storage on sd card
- implement a small app that can do cert+key+ca => p12 or suggest an app on the market
- Implementation in ICS OpenVpn would require SD_WRITE permission which I would like to avoid
- finish .ovpn -> configuration importer
- depends on inline file storage, since config files can include inline files
- implement an encryption for profiles, so no sensitive data has be stored in plain text
- encrypt/decrypt with android private storage key (+no user input required)
- implement general settings dialog
- encryption of profiles
- Speed/Transfered in notification bar (byte counter of managment)
Missing configuration options:
IPv6 support:
- Enable IPv6 (tun-ipv6)
- Implementing/testing IPv6 route/ifconfig/DNS Server
Tap support:
- People still ask how to do tap support. :(
- Put statements that tap is not supported everywhere.
- Actually it is possible to emulate tap with tun device, a minimal implementation would have to do:
- generate random mac
- strip macs header on receive
- append mac header on send
- implement arp, possible the most difficult task ...
- need to chose right mac of receiver
Requested by users:
keepalive 10 120
auth
mtu-link
nobind
|
