SoftEther VPN User Forum

SoftEther VPN User Forum
https://www.vpnusers.com/

Currently supported ciphers

https://www.vpnusers.com/viewtopic.php?f=7&t=68790

Page 1 of 1

Currently supported ciphers

Posted: Mon Jan 15, 2024 4:50 pm
by julian
Hello everybody.

I'm currently evaluating which ciphers and encryption methods are supported by softether, especially when using openvpn client to connect and it looks like, that the website might not be 100% up to date anymore.
I was wondering, if elliptic curve cryptographie (e.g. ECDHE) is already supported? Also i was wondering if CBC mode (cipher block chaining) or XDS is supported?

Thanks in advance and best regards,
Julian

Re: Currently supported ciphers

Posted: Mon Jan 15, 2024 8:00 pm
by solo
Hi, new options are added to DE https://github.com/SoftEtherVPN/SoftEth ... le-edition
eg. https://www.vpnusers.com/viewtopic.php? ... 31#p100677

Re: Currently supported ciphers

Posted: Tue Jan 16, 2024 4:14 pm
by julian
Hi solo,

Thanks for your fast reply.

So if i saw that right, the above mentioned ciphers are not yet integrated/usable or am i missing something?

BR
Julian

Re: Currently supported ciphers

Posted: Wed Jan 17, 2024 8:10 am
by Bauernfeind
I am also curious if the ciphers added in Version SoftEther VPN 4.22 Build 9634 Beta (November 27, 2016) (https://www.softether.org/5-download/history) are supported?

Thanks!

Best, Florian

Re: Currently supported ciphers

Posted: Wed Jan 17, 2024 10:34 am
by solo
4.42-9798 Network.c

Code: Select all

static char *cipher_list = "RC4-MD5 RC4-SHA AES128-SHA AES256-SHA DES-CBC-SHA DES-CBC3-SHA DHE-RSA-AES128-SHA DHE-RSA-AES256-SHA AES128-GCM-SHA256 AES128-SHA256 AES256-GCM-SHA384 AES256-SHA256 DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384"
#if OPENSSL_VERSION_NUMBER >= 0x10100000L
	" DHE-RSA-CHACHA20-POLY1305 ECDHE-RSA-CHACHA20-POLY1305";
#endif

Re: Currently supported ciphers

Posted: Thu Jan 18, 2024 8:12 am
by julian
Thanks again!

Thats great, I've just seen this is already included in the stable version binary. The only question left for me now is, how can I force the connection to use e.g. ECDHE resp. where I need to configure this?

Re: Currently supported ciphers

Posted: Thu Jan 18, 2024 8:45 am
by solo
Set "Encryption Algorithm Name".
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/