On 20/01/18 18:22, Selva Nair wrote: > Hi, > > Does openvpn-vagrant include any VM provisioning with openssl-0.9.8? > Until recently I had access to a few old debian boxes but now all > updated and 0.9.8 testing is getting harder.
Let me rather twist this question around ... Do we want to support OpenSSL 0.9.8? Are there any Linux distributions or other OSes out there in the wild which is still supported which are also based on openssl-0.9.8? Officially we dropped RHEL 5 support and moved to RHEL 6 as the oldest Linux distribution we support OpenVPN on. RHEL 6 ships with an openssl-1.0.1e baseline. For the other platforms ... In Windows, we define what we want to use - as we need to embed OpenSSL in our own package. I believe most of the current stable *BSDs and derivatives are on an OpenSSL 1.x base (or the LibreSSL fork) too (but I don't know that for a fact yet). I expect Tunnelblick and macOS users to use a far newer OpenSSL library too. I would rather see us moving to officially drop 0.9.8 unless there are really strong arguments and evidence of someone maintaining openssl-0.9.8 with security backports. -- kind regards, David Sommerseth OpenVPN Inc
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
