openvpn - w3toppers.com

Build OpenVPN with specific OpenSSL version

Below is the procedure I used to build OpenVPN with OpenSSL 1.0.2. OpenSSL 1.0.1 vs. 1.0.2 vs. 1.1.0 should not matter. However, some Configure scripts dies on OpenSSL 1.1.0 because 1.1.0 uses OPENSSL_init_ssl rather than SSL_library_init. Note the use of RPATH’s on Linux (OS X would use a different technique). OpenSSL configuration options are mostly … Read more

How do I manage the error “OpenSSL v1.1.1 ssl_choose_client_version unsupported protocol”? [closed]

You don’t have to downgrade OpenSSL. With the introduction of openssl version 1.1.1 in Debian the defaults are set to more secure values by default. This is done in the /etc/ssl/openssl.cnf config file. At the end of the file there is: [system_default_sect] MinProtocol = TLSv1.2 CipherString = DEFAULT@SECLEVEL=2 Debian now require as minimum the TLS … Read more