Hi, On Mon, Jan 22, 2018 at 7:33 AM, David Sommerseth <open...@sf.lists.topphemmelig.net> wrote: > Let me rather twist this question around ... Do we want to support OpenSSL > 0.9.8? Are there any Linux distributions or other OSes out there in the wild > which is still supported which are also based on openssl-0.9.8? > > Officially we dropped RHEL 5 support and moved to RHEL 6 as the oldest Linux > distribution we support OpenVPN on. RHEL 6 ships with an openssl-1.0.1e > baseline. > > For the other platforms ... In Windows, we define what we want to use - as we > need to embed OpenSSL in our own package. I believe most of the current > stable *BSDs and derivatives are on an OpenSSL 1.x base (or the LibreSSL fork) > too (but I don't know that for a fact yet). I expect Tunnelblick and macOS > users to use a far newer OpenSSL library too.
Dropping 0.9.8 isn't a problem for Tunnelblick, which embeds OpenSSL 1.0.2. However, 0.9.8 (patched by Apple, as I understand it) is included in macOS up through Sierra. So people using command-line openVPN would have problems unless they've replaced OpenSSL. (Apple's latest system, "High Sierra" symlinks openvpn to LibreSSL, which opens a different can of worms : ) Best regards, Jon Bullard ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
