What’s better than SSL everywhere? Free SSL everywhere! I first heard about the letsencrypt.org project at Defcon 23 in July (you can watch the same presentation here: https://www.youtube.com/watch?v=Ya6t8nMclos). The concept was great, and I agreed with many of the points that were made, although the difficulty of setting up TLS was quite overblown, it really isn’t that difficult. I was interested in the concept, but at that time the project was not available for use, but now it is, and it’s fairly easy to use, though does have one minor drawback.
Security
I had previously setup a few FreeBSD systems to act as PPTP servers for places that I had them acting as firewalls using mpd. However, I was constantly running into problems with “No buffer space available” and packets would drop, connections would be sluggish, etc.
I was just doing some system upgrades and decided to look at other options. I found a port called poptop “the pptp server for linux” in the ports distribution, and even a howto online detailing what my configs should look like. So I gave it a shot: