We use cookies to ensure you get the best experience on our website
Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
0ct0pu5
/
desec-stack
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Przeglądaj źródła

fix(openvpn): update config for v2.5

Fixes warning:
* Note: Treating option '--ncp-ciphers' as  '--data-ciphers' (renamed in OpenVPN 2.5).
* --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

Source: https://community.openvpn.net/openvpn/wiki/CipherNegotiation
Rotzbua 1 rok temu
rodzic
ef55495ce4
commit
5c263809b0
1 zmienionych plików z 3 dodań i 1 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 3 1
      openvpn-server/conf/server.conf

+ 3 - 1
openvpn-server/conf/server.conf
Wyświetl plik 

@@ -10,7 +10,9 @@ key /etc/openvpn/secrets/server.key  # This file should be kept secret
 
 
 tls-version-min 1.3 or-highest
 
 tls-cipher TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
 
-ncp-ciphers AES-256-GCM
 
+data-ciphers AES-256-GCM
 
+# Fallback for OpenVPN before version 2.5, use "-" to disable support.
 
+data-ciphers-fallback AES-256-GCM
 
 auth SHA256
 
 dh none
 
 ecdh-curve secp384r1

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5