openvpn and man in the middle?

[starofeight]

Hello
I have no experence with VPNs. However with Australia's stupid "internet filtering" scheme coming I decided to have a look. I have a dual booted Windows 7/ubuntu 9.10 ultimate ASUS desktop. So, I downloaded openvpn onto my ubuntu box and followed the instructions. It unzipped fine. It banged out all the stuff in the terminal. All that was left [to that stage] was to go to the VPN localhost page and bang in my username/root to get admin rights. The VPN log in page came up, but only after this warning page cropped up that the VPN certificate was not good and that I was heading to an untrusted page. I went to the localhost page anyway. Then when I banged in my details [root as the username and sudo password] I could not get any admin access. I tried the same details which I am 100 percent sure were right, and still no dice. So I did try a few other possible usernames etc and nothing worked.

So where does this leave me? Was it a man in the middle attack? What should I do? Delete the VPN and start again? Change my password to be safe?

Since then I have not logged into my ubuntu box. I decided to come here first. Thus I have forgotten which VPN version it was. But I am pretty sure that it was the latest stable one.

Thank you.

[dmorris]

It sounds like you're getting an invalid cert message while connecting to yourself - so I doubt thats a MitM attack. It just means you have an invalid cert. You'll probably have to read up on how to generate a proper one.

btw, this forum is technically for openvpn within untangle - so we could help more if you run untangle.