Hi,
On Tue, Apr 22, 2014 at 01:10:34PM +0100, George Ross wrote:
> > One of the new things in 2.3.3 is TLS version negotiation, and much to
> > our surprise, this seems to cause failures that we don't truly understand
> > ("it works for all our test cases", and "I'm running git master on our
> > corporate servers, *with* that functionality, since many months now").
> I'm happy to test patches...The most interesting to me would be "if we disable TLS1.1+, will it start working, or still be broken". James posted a patch to the openvpn-devel list which will do that, and that should apply to master and to 2.3.3: Message-ID: <1398064204-26476-4-git-send-email-ja...@openvpn.net> http://article.gmane.org/gmane.network.openvpn.devel/8560 (it changes the semantics of "tls-min-version" to be "as in 2.3.2, if not set in the config", so you can actually test on-off variants) gert -- USENET is *not* the non-clickable part of WWW! //www.muc.de/~gert/ Gert Doering - Munich, Germany g...@greenie.muc.de fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
pgpOEtm0WSMMa.pgp
Description: PGP signature
------------------------------------------------------------------------------ Start Your Social Network Today - Download eXo Platform Build your Enterprise Intranet with eXo Platform Software Java Based Open Source Intranet - Social, Extensible, Cloud Ready Get Started Now And Turn Your Intranet Into A Collaboration Platform http://p.sf.net/sfu/ExoPlatform
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
