[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

RE: [Openvpn-users] Blowfish missing on freebsd with openssl 0.9.7e


  • Subject: RE: [Openvpn-users] Blowfish missing on freebsd with openssl 0.9.7e
  • From: "Michael Scheidell" <scheidell@xxxxxxxxxx>
  • Date: Sat, 6 Nov 2004 09:00:51 -0500

Issue solved:

problem was in Freebsd PORTS.
you must update your ports tree as of 00:18 Eastern (today) November 6h.

problem was in these two files:
/usr/ports/security/openssl/files


-rw-r--r--  1 root  wheel   401 Nov  6 00:13 patch-crypto-dso-Makefile
-rw-r--r--  1 root  wheel  1794 Nov  6 00:12 patch-Makefile.org


-----Original Message-----
From: openvpn-users-admin@xxxxxxxxxxxxxxxxxxxxx
[mailto:openvpn-users-admin@xxxxxxxxxxxxxxxxxxxxx]On Behalf Of Michael
Scheidell
Sent: Saturday, October 30, 2004 3:23 PM
To: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Subject: [Openvpn-users] Blowfish missing on freebsd with openssl 0.9.7e


Was running fine with 
 openssl version
OpenSSL 0.9.7d 17 Mar 2004

Installed:
 openssl version
OpenSSL 0.9.7e 25 Oct 2004

And now blowfish won't work on FBSD 4.10.

Blowfish SEEMS to be working fine on openssl on both versions (I can
encrypt stuff)
(and, no, make distclean/ configure/make install on openvpn between
openssl versions didn't make any difference)
I suspect openssl may have change the output of whatever command parses
ciphers?
A diff on both copies of openssl didn't show much difference
(I have not gone in, one line at a time to change them yet)
Diffs available upon request.

Tried openvpn 2. beta 11, 14 and 15.

 openvpn --show-ciphers with 0.9.7d:
DES-CBC 64 bit default key (fixed)
IDEA-CBC 128 bit default key (fixed)
RC2-CBC 128 bit default key (variable)
DES-EDE-CBC 128 bit default key (fixed)
DES-EDE3-CBC 192 bit default key (fixed)
DESX-CBC 192 bit default key (fixed)
BF-CBC 128 bit default key (variable)
RC2-40-CBC 40 bit default key (variable)
CAST5-CBC 128 bit default key (variable)
RC5-CBC 128 bit default key (variable)
RC2-64-CBC 64 bit default key (variable)
AES-128-CBC 128 bit default key (fixed)
AES-192-CBC 192 bit default key (fixed)
AES-256-CBC 256 bit default key (fixed)


With 0.9.7e: (missing several!)

DES-CBC 64 bit default key (fixed)
IDEA-CBC 128 bit default key (fixed)
RC2-CBC 128 bit default key (variable)
DES-EDE3-CBC 192 bit default key (fixed)
AES-128-CBC 128 bit default key (fixed)
AES-192-CBC 192 bit default key (fixed)
AES-256-CBC 256 bit default key (fixed)

Did a diff on both versions of openssl
-- 
Michael Scheidell, CTO
SECNAP Network Security
561-999-5000 x 1131
www.secnap.com

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users