-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 24/10/11 12:39, Adriaan de Jong wrote: > On 10/24/2011 11:50 AM, David Sommerseth wrote: >> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 >> >> On 24/10/11 10:58, Adriaan de Jong wrote: >>> Unfortunately BF isn't supported in PolarSSL though. >>> >>> Do you have any other suggestions? I'm open to most ideas other >>> than "implement blowfish" :) >> I agree with JJK, that this is probably not a clever idea - to >> change the default encryption algorithm. >> >> What about to enforce the use of --cipher when OpenVPN is compiled >> with PolarSSL support? Stating that blowfish isn't supported and >> another cipher must explicit be set. > I like this idea. I'll see about implementing it instead of patch > 3/3.
Great! Then we'll consider patch 3/3 as officially NACKed. > Perhaps in the long term we could try going for a protocol change as > suggested by JJK. Agreed! That is something which falls natural into the OpenVPN 3 development, where we most likely will do changes to with the wire protocol as well. kind regards, David Sommerseth -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6lQVAACgkQDC186MBRfroz6ACeLb3dYOQbb0ydX79CefGlclxd RLQAoKDHRJxK3+IyJWBjyS1amcP9x4vL =9ynn -----END PGP SIGNATURE-----