TLS-Crypt #11
Comments
|
This is being worked on and there have been quite some progress in this area. The new code needed will also need to go through a proper code review before we can make it public. |
|
+1. And not just some countries, but many private businesses and organizations block OpenVPN too. |
|
There have been a considerable amount of work put into this, and it is moving forward. But we are holding back a bit as we do want to also support a newer and more advanced TLS crypt version (named The core difference between |
|
But 'old' tls-crypt is better than nothing. It's hard to use the Internet without tls-crypt because some countries are blocking tls-auth. And it's hard to wait for tls-crypt-v2, too. |
|
We have the needed code for that in the this core library already (commit 74c5f4f). But it will not hit any OpenVPN Connect clients until we have tls-crypt-v2 in place, as we need to ensure both v1 and v2 will work fine and behave as it will in OpenVPN v2.4 clients. And also be fully compliant against OpenVPN 2.4 servers. These things needs to take the time it takes; there is a lot of reviewing and testing required until we are fully ready to release it. If you have urgent issues now getting to the open Internet, consider using the PrivateTunnel service which also should have some workarounds for that. |
|
Thank you very much for the new OpenVPN Connect with tls-crypt support! Can you please do the same for iOS? |
|
It's planned for the next iOS release and it should happen not too far in the future. Stay tuned! |
|
iOS 11.1 just has been released. Or you are waiting for iOS 11.2? |
|
He means the iOS app release not ios release itself. |
|
Oh sorry. Thank you very much! |
|
The iOS app has been updated but tls-crypt doesn't work on it. |
|
There has been no update for the iOS app yet. Not sure where you have seen it? |
|
https://itunes.apple.com/us/app/openvpn-connect/id590379981?mt=8 Category: Utilities |
|
Oh I see. To be honest I have no idea why it says it was updated. |
|
When are you going to update it? Without tls-crypt we are dying :'-( |
|
It's in the works and will be released soon. I know tls-crypt can be important, but I am interested to learning what makes it so crucial to you. |
|
It's so critical for me because of our DPI. It knows the difference between tls-auth and https, for example. It's so hard to bypass our DPI so tls-crypt is the best solution. I think you haven't ever been in the countries with the restricted Internet connection :-) |
|
eheh I have and honestly tls-crypt is not a real solution for this as it will take just days before the DPI will learn about it too. Imho you should better look into techniques aimed to provide protocol obfuscation, if that's the problem you are trying to solve. |
|
Is there any better solution for iOS? Tls-crypt is not the panacea but it can make life easier. |
|
Honestly I don't know. |
|
Hello. Is there any news about the new iOS app? |
|
No. |
|
Hello there, Anybody willing to join the program can write an email to ios@openvpn.net mentioning "OpenVPN Connect iOS: joining beta program" in the subject. Don't forget that we need a valid Apple ID to add you to the testers group. More details about the program will be made publicly available soon, but enrolment can already start ;) Thanks! |
|
tls-crypt is available in master and in both OpenVPN Connect clients for Android and iOS. |
macdns: refactor split-DNS and domain autocompletion logic Approved-by: James Yonan <james@openvpn.net>
Hello. Please add support of tls-crypt. It would be so helpful for some countries with restricted internet.
The text was updated successfully, but these errors were encountered: