Currently supported ciphers

[julian]

Hello everybody.

I'm currently evaluating which ciphers and encryption methods are supported by softether, especially when using openvpn client to connect and it looks like, that the website might not be 100% up to date anymore.
I was wondering, if elliptic curve cryptographie (e.g. ECDHE) is already supported? Also i was wondering if CBC mode (cipher block chaining) or XDS is supported?

Thanks in advance and best regards,
Julian

[solo]

Hi, new options are added to DE https://github.com/SoftEtherVPN/SoftEth ... le-edition
eg. https://www.vpnusers.com/viewtopic.php? ... 31#p100677

[julian]

Hi solo,

Thanks for your fast reply.

So if i saw that right, the above mentioned ciphers are not yet integrated/usable or am i missing something?

BR
Julian

[Bauernfeind]

I am also curious if the ciphers added in Version SoftEther VPN 4.22 Build 9634 Beta (November 27, 2016) (https://www.softether.org/5-download/history) are supported?

Thanks!

Best, Florian

[solo]

4.42-9798 Network.c

Code: Select all

static char *cipher_list = "RC4-MD5 RC4-SHA AES128-SHA AES256-SHA DES-CBC-SHA DES-CBC3-SHA DHE-RSA-AES128-SHA DHE-RSA-AES256-SHA AES128-GCM-SHA256 AES128-SHA256 AES256-GCM-SHA384 AES256-SHA256 DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384"
#if OPENSSL_VERSION_NUMBER >= 0x10100000L
	" DHE-RSA-CHACHA20-POLY1305 ECDHE-RSA-CHACHA20-POLY1305";
#endif

[julian]

Thanks again!

Thats great, I've just seen this is already included in the stable version binary. The only question left for me now is, how can I force the connection to use e.g. ECDHE resp. where I need to configure this?

[solo]

Set "Encryption Algorithm Name".