Hi, since OpenVPN 2.4 supports GCM ciphers I'm wondering whether it is safe to disable packet authentication (--auth) entirely. To my understanding GCM ciphers provide encryption as well as authentication.
Are there any arguments to keep it enabled anyway? What arguments can be made for or against it? Obviously it adds some overhead, so performance is probably a little bit worse with explicit packet authentication. Are there any other things to consider? Best regards, Karol Babioch
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
