Hi,
thank you very much for that elaboration!
This makes much more sense now.
I believe the manual is phrased rather confusing then, but it may just be a
personal issue.
Kind regards
--------
On 27-07-17 15:18, open...@keemail.me wrote:
Thanks for the reply, but I think `--show-tls` simply prints all
available tls-ciphers for the cipher suite,
as stated by the manual:
Use --show-tls to see a list of TLS ciphers supported by your crypto
library.
I'm looking for the default value of the tls-cipher, if it is not
defined.
The manpage could be a bit more clear, but Magnus is right: --show-tls
prints the default cipher list, or the list resulting from your
--tls-cipher setting. (Just try adding --tls-cipher when you do
--show-tls.)
For mbed TLS, the default is the list of all supported ciphers by the
library. You can easily throw out a lot of bad ones by setting
--tls-version-min 1.2.
-Steffan
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
