Also an OpenVPN user, Now that the POODLE vuln is out, could the 5.5 version of openvpn be bumped to 2.3.4 please? One thing that got introduced in 2.3.3 was --tls-version-min so you can specify the minimum version of TLS to use. I can't find a way to get above TLSv1/SSLv3 using 2.3.2.
Noth On Fri, 2014-08-01 at 08:39 +0200, Stefan Sperling wrote: > On Fri, Aug 01, 2014 at 07:00:43AM +0100, Ryan O'Connor wrote: > > There are more than 30 fixes in 2.3.4. > > > > To see what those are, please surf to: > > https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23 > > > > As OpenBSD takes security very seriously, I suppose it will provide 2.3.4 > > for its users. > > Another openvpn user here. > > Is there any particular fix you need? Skimming the change log I don't > see any critical fixes between 2.3.2 and 2.3.4. > > Changing a port while the ports tree is frozen presents a huge > burden on the people building release packages. > And important fixes can always be merged into -stable later. >