Ticket #1286 (closed enhancement: fixed)

Opened 4 months ago

Last modified 3 months ago

Upgrade to OpenVPN 2.1 RC21

Reported by: nemesisdb Assigned to: somebody
Priority: major Milestone:
Component: component1 Version:
Keywords: Cc:

Description

Please upgrade to version 2.1_rc21 as it offers security improvements:

* Added additional session renegotiation hardening. OpenVPN has always

required that mid-session renegotiations build up a new SSL/TLS session from scratch. While the client certificate common name is already locked against changes in mid-session TLS renegotiations, we now extend this locking to the auth-user-pass username as well as all certificate content in the full client certificate chain.

Change History

12/06/2009 05:46:12 PM changed by nemesisdb

  • status changed from new to closed.
  • resolution set to fixed.

http://svn.dd-wrt.com:8000/dd-wrt/changeset/13357