Hi, On 27-07-17 15:18, open...@keemail.me wrote: > Thanks for the reply, but I think `--show-tls` simply prints all > available tls-ciphers for the cipher suite, > as stated by the manual: > > Use --show-tls to see a list of TLS ciphers supported by your crypto > library. > > I'm looking for the default value of the tls-cipher, if it is not defined.
The manpage could be a bit more clear, but Magnus is right: --show-tls prints the default cipher list, or the list resulting from your --tls-cipher setting. (Just try adding --tls-cipher when you do --show-tls.) For mbed TLS, the default is the list of all supported ciphers by the library. You can easily throw out a lot of bad ones by setting --tls-version-min 1.2. -Steffan ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
