Re: Missing easy-rsa package
The Debian Wiki guide I linked to doesn't work without easy-rsa, and basically every guide I've seen for configuring openvpn with TLS relies on easy-rsa, so a very common use case for openvpn isn't possible without the easy-rsa package, so it should be fair to say that the openvpn package is not fully usable without the easy-rsa package. Moreover, following strict security practices isn't always necessary, so I'm not sure why it needed to be brought up. I'm not setting up openvpn for an organization, just for myself and a quick test, so it's not relevant where the CA is. Finally, it's rather clear that you're replying to keywords and not the meaning of the message, which is more consistent with skimming or scanning, not reading. Declaring that the discussion is over is also a nice touch. All in all, it's been a very pleasant experience to take the time and try and report a problem with using backports.