Hello,
My openvpn setup with a various number of clients uses cipher BF-CBC with keysize 448.
However, OpenVPN Connect for iOS and Android seems to ignore keysize setting in .ovpn file but uses the default keysize of 128 bits (for BF-CBC).
It is also listed as "unused options" in the connection log.
While I could change the server configuration, this would be replacing one evil with the other, since setting "keysize 128" would lock out the regular users.
Is there a way to use OpenVPN Connect for iOS with BF-CBC and keysize 448?
Regards,
Gacs
Keysize problem
-
Traffic
- OpenVPN Protagonist
- Posts: 4066
- Joined: Sat Aug 09, 2014 11:24 am
Re: Keysize problem
If iOS/Android say: "Unused option" then there is not much you can do about it.
Make a feature request maybe ..
As for the server, the only way around it would be to run two server instances (on one machine is fine)
Make a feature request maybe ..
As for the server, the only way around it would be to run two server instances (on one machine is fine)
-
Gacs
- OpenVpn Newbie
- Posts: 3
- Joined: Fri Jan 16, 2015 9:16 am
Re: Keysize problem
I would like to contact to the IOS Connect support, because the 128 Keysize is security risk... Can you write me the Support email address?