Changes between Version 48 and Version 49 of CipherNegotiation
- Timestamp:
- 08/13/20 20:15:57 (4 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
CipherNegotiation
v48 v49 313 313 ---- 314 314 315 == Corner case: OpenVPN built with `--enable-small` 315 == Special requirement: OpenVPN built with `--enable-small` 316 When OpenVPN version 2.3 or older is built with `--enable-small` (Typically found in routers) then Openvpn 2.5+ **must** use `--data-ciphers-fallback ALG`. The `ALG` must match the peers `--cipher`.[[br]][[br]] 317 **This is the only case where** `--data-ciphers-fallback` **takes effect.** 316 318 === Server version 2.3 built with `--enable-small` 317 319 ==== Default configuration: No effective directives specified.[[br]] … … 321 323 * __Client version 2.5__ 322 324 ||= `--data-ciphers` =||= `-fallback` =|| NCP || Connection || 323 ||= - =||= - =|| Partial || `Fail (no shared cipher)` ||324 325 ||= - =||= - =|| Partial || `Fail (no shared cipher)` || 325 326 ||= - =||= BF-CBC =|| Partial || ''[[span(style=color: #806000, **Weak** BF-CBC )]]'' ||