OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Keysize problem

https://forums.openvpn.net/viewtopic.php?t=17972

Page 1 of 1

Keysize problem

Posted: Fri Jan 16, 2015 9:26 am
by Gacs
Hello,

My openvpn setup with a various number of clients uses cipher BF-CBC with keysize 448.

However, OpenVPN Connect for iOS and Android seems to ignore keysize setting in .ovpn file but uses the default keysize of 128 bits (for BF-CBC).
It is also listed as "unused options" in the connection log.

While I could change the server configuration, this would be replacing one evil with the other, since setting "keysize 128" would lock out the regular users.

Is there a way to use OpenVPN Connect for iOS with BF-CBC and keysize 448?

Regards,
Gacs

Re: Keysize problem

Posted: Fri Jan 16, 2015 1:18 pm
by Traffic
If iOS/Android say: "Unused option" then there is not much you can do about it.
Make a feature request maybe ..

As for the server, the only way around it would be to run two server instances (on one machine is fine)

Re: Keysize problem

Posted: Mon Jan 19, 2015 11:55 am
by Gacs
I would like to contact to the IOS Connect support, because the 128 Keysize is security risk... Can you write me the Support email address?
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/