-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 24/10/11 10:58, Adriaan de Jong wrote: > Unfortunately BF isn't supported in PolarSSL though. > > Do you have any other suggestions? I'm open to most ideas other than > "implement blowfish" :)
I agree with JJK, that this is probably not a clever idea - to change the default encryption algorithm. What about to enforce the use of --cipher when OpenVPN is compiled with PolarSSL support? Stating that blowfish isn't supported and another cipher must explicit be set. kind regards, David Sommerseth >> -----Original Message----- From: Jan Just Keijser >> [mailto:janj...@nikhef.nl] Sent: maandag 24 oktober 2011 10:55 To: >> Adriaan de Jong Cc: openvpn-devel@lists.sourceforge.net Subject: Re: >> [Openvpn-devel] [PATCH 3/3] Changed default algorithm for PolarSSL >> to AES-128, as BF is not supported >> >> I'd NACK this patch : the default behaviour of OpenVPN should be >> independent of the SSL implementation. >> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6lNNgACgkQDC186MBRfrolbQCgiXigb8L0jiWXgWBs/H+qhiMJ EpYAnRJHzHUj83lauUAUe0AIxSHpe+hY =aIa+ -----END PGP SIGNATURE-----
