Thanks for the information. Ill appreciate any further insight on the following: -
1. Should we uninstall and then re-install the 2.3.3 on all Windows clients? Or should we install 2.3.3 without uninstalling previous version? 2. Our server is running on Windows as well. So we will need to install 2.3.3 on server too, correct? 3. Do we need to re-generate all keys/certificates (ca, clients etc.) and send them over to all clients after this fix? Regards, Sumit -----Original Message----- From: Gert Doering [mailto:g...@greenie.muc.de] Sent: Tuesday, April 8, 2014 4:22 PM To: Fredrik Strömberg Cc: openvpn-users@lists.sourceforge.net Subject: Re: [Openvpn-users] Does OpenVPN use the TLS heartbeat extension? (OpenSSL Security Advisory CVE-2014-0160) Hi, On Tue, Apr 08, 2014 at 01:46:43PM +0200, Fredrik Strömberg wrote: > When can we expect a new version for Windows to be released? http://openvpn.net/index.php/open-source/downloads.html has openvpn-install-2.3.2-I004-*.exe now, which is 2.3.2 with OpenSSL 1.0.1g (and no other changes as compared to I003) We also released 2.3.3, which will appear there tomorrow or so - which does not bring a fix to the OpenSSL bug "per se", but can identify itself more clearly towards the server, so server admins can more easily see "ah, windows version, not 2.3.3 -> lock out, buggy". (There is no way right now to discern a 2.3.2-with-broken-OpenSSL from a 2.3.2-with-fixed-OpenSSL on the server side) gert -- USENET is *not* the non-clickable part of WWW! //www.muc.de/~gert/ Gert Doering - Munich, Germany g...@greenie.muc.de fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de ------------------------------------------------------------------------------ Put Bad Developers to Shame Dominate Development with Jenkins Continuous Integration Continuously Automate Build, Test & Deployment Start a new project now. Try Jenkins in the cloud. http://p.sf.net/sfu/13600_Cloudbees _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
