The OpenVPN community project team is proud to release OpenVPN 2.4.2. It can be downloaded from here.
OpenVPN 2.4.0 was audited for security vulnerabilities independently by Quarkslabs (funded by OSTIF) and Cryptography Engineering (funded by
Private Internet Access) between December 2016 and April 2017. The primary findings were two remote denial-of-service vulnerabilities;
other discovered issues were minor. This release fixes the denial-of-service vulnerabilities as well as many of the minor issues. Our official security announcement is here. A summary of the changes is available in Changes.rst, and a full list of changes is available here.
Compared to OpenVPN 2.3 this is a major update with a large number of new features, improvements and fixes. Some of the major features are AEAD (GCM) cipher and Elliptic Curve DH key exchange support, improved IPv4/IPv6 dual stack support and more seamless connection migration when client's IP address changes (Peer-ID). Also, the new --tls-crypt feature can be used to increase users' connection privacy.
OpenVPN GUI bundled with the Windows installer has a large number of new features compared to the one bundled with OpenVPN 2.3. One of major features is the ability to run OpenVPN GUI without administrator privileges. For full details, see the changelog. The new OpenVPN GUI features are documented here.
Please note that OpenVPN 2.4 installers will not work on Windows XP.
For generic help use these support channels:
Announcements from OpenVPN involving bugs, updates, and new features.
1 post • Page 1 of 1
- OpenVPN Technologies
- Posts: 103
- Joined: Fri Aug 13, 2010 9:05 pm