Hi,
On Mon, Sep 23, 2019 at 03:32:24PM +0200, Arne Schwabe wrote:
> + if (!(tls_item_in_cipher_list("AES-128-GCM", options->ncp_ciphers)
> + && tls_item_in_cipher_list("AES-256-GCM",
> options->ncp_ciphers)))
What about AES-192-GCM? What *exactly* does IV_NCP=2 guarantee?
Can we have something nicer for cipher negotiation instead?
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
