[Pkg-openssl-devel] Bug#907049: Bug#907049: openssl: Update to 1.1.1~~pre9-1 makes certain programs unusable
Kurt Roeckx
kurt at roeckx.be
Sat Aug 25 14:06:47 BST 2018
reassign 907049 openvpn
severity 907049 serious
retitle 907049 openvpn: ssl_choose_client_version:version too low
block 907015 by 907049
thanks
On Sat, Aug 25, 2018 at 02:49:12PM +0200, Samuel Hym wrote:
> > Can you try with:
> > MinProtocol = TLSv1
> >
> > And with:
> > #MinProtocol = TLSv1.2
>
> Both options work in my case.
> So I leave the first enabled, I guess it is a bit more secure than
> commenting it out.
If both work, it's there really isn't much difference.
Anyway, that seems to mean that openvpn only supports TLS 1.0 for
some reason. I have no idea how openvpn works, but if it uses
TLS 1.0, it really should switch to 1.2 or 1.3.
Kurt
More information about the Pkg-openssl-devel
mailing list