Thanks Arne for chiming in and for pointing at that patch, which according to [1] has been tested against Ubuntu 22.04 already.
I was worried about introducing a patch in Ubuntu can possibly downgrade the OpenVPN security standards, but I see that the same change landed in the master branch [2], so we're going to ship it with the next Ubuntu releases anyway (as part of newer OpenVPN releases), so I think it's safe to include after all. [1] https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg24273.html [2] https://github.com/OpenVPN/openvpn/commit/23efeb7a0bd9e0a6d997ae6e77e0e04170da3e67 ** Summary changed: - OpenVPN fails to start/connect + OpenVPN fails to start/connect: OpenSSL: error:0A00018E:SSL routines::ca md too weak ** Tags added: server-next ** Changed in: openvpn (Ubuntu) Status: Incomplete => Triaged ** Changed in: openvpn (Ubuntu) Importance: Undecided => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1968629 Title: OpenVPN fails to start/connect: OpenSSL: error:0A00018E:SSL routines::ca md too weak To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openvpn/+bug/1968629/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs