vpnc icon indicating copy to clipboard operation
vpnc copied to clipboard

Published 20 hours ago verified publisher icon streambinder

Avoid weak cryptography

Open uhle opened this issue 2 years ago • 0 comments

These commits will prevent vpnc from accepting SA's with weak cryptographic settings by default. These are MD5 and 3DES in addition to DES which was already avoided before. Two new options --enable-weak-authentication and --enable-weak-encryption can re-enable these methods if needed. Option --enable-weak-encryption supersedes --enable-1des which is now deprecated.

uhle avatar Sep 20 '22 14:09 uhle