This update adds additional upstream changes to better handle deprecated ciphers. BF-CBC is now also deprecated completely in server configurations and it will no longer attempt to negotiate BF-CBC with clients. This is a port of the changes done to the Fedora 36 openvpn-2.5.7-2 build to EPEL-9.
These changes are a result of OpenSSL 3.0 being far more stricter on deprecated and weak ciphers than OpenSSL 1.1 and older.
Please login to add feedback.
This update has been submitted for testing by dsommers.
This update's test gating status has been changed to 'ignored'.
As with the Fedora 36 build, I am requiring more +1 karmas to release this one due to the issues this release caused. If there are no -1 within 30 days, this is also considered stable.
This update has been pushed to testing.
This update can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by bodhi.
This update has been pushed to stable.