I am looking to upgrade to v2.4 of the client as soon as possible so I can change the cipher on the server to mitigate the SWEET32 issue. I have updated the Windoze clients so they should now (if I understand correctly) be able to negotiate an cipher with my server (which is on 2.3.13 until EPEL update so I am planning to fix my server cipher manually when my clients can negotiate the cipher). I don't think the Andorid client (or iOS) has yet been upgraded to allow this and I am not looking forward to updating all my Android clients manually. Do you know if an upgrade to OpenVPN Connect is in the pipeline to support this functionality?
P.S. In the meanwhile I have set reneg-bytes 64000 on the server to mitigate the vulnerability
1 post • Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest