Hi,

On 27-07-17 15:18, open...@keemail.me wrote:
> Thanks for the reply, but I think `--show-tls` simply prints all
> available tls-ciphers for the cipher suite,
> as stated by the manual:
> 
>     Use --show-tls to see a list of TLS ciphers supported by your crypto
> library.
> 
> I'm looking for the default value of the tls-cipher, if it is not defined.

The manpage could be a bit more clear, but Magnus is right: --show-tls
prints the default cipher list, or the list resulting from your
--tls-cipher setting.  (Just try adding --tls-cipher when you do
--show-tls.)

For mbed TLS, the default is the list of all supported ciphers by the
library.  You can easily throw out a lot of bad ones by setting
--tls-version-min 1.2.

-Steffan

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to