OpenVPN 2.5.5 has been released, a package for creating virtual private networks that allows you to organize an encrypted connection between two client machines or provide a centralized VPN server for multiple clients to work simultaneously. The OpenVPN code is distributed under the GPLv2 license, ready-made binary packages are formed for Debian, Ubuntu, CentOS, RHEL and Windows.
In the new version
- The transition to the category of obsolete 64-bit ciphers subject to the SWEET32 attack has been postponed until branch 2.7.
- The Windows version provides a default network address for the emulated DHCP server, which makes it possible to use the /30 subnet required to connect to OpenVPN Cloud.
- Windows builds include mandatory support for elliptic curve algorithms (the ability to build with OpenSSL without elliptic curve support has been deprecated).
- When building with the MSVC compiler, command execution flow protection (CFI, Control-Flow Integrity) and protection against attacks of the Specter class are enabled.
- For Windows builds, the loading of the OpenSSL configuration file (%installdir%SSLopenssl.cfg) is returned, which is necessary for the operation of some hardware tokens that require special settings for OpenSSL.
Source: opennet.ru