OpenVPN 2.4.5 is out

OpenVPN is trusted by millions of people around the globe and I use it too, the new Changelog looks promising since it fixes several problems related to IPv6, DNS, OpenSSL some crypto API related things. As always you should update it as soon as possible.

OpenVPN

Download

As always you can find the latest version for Windows, Linux among the latest source here. Since several clients from well known VPN providers like PIA, Proton & Co. building their clients around OpenVPN I expect updates very soon.

Replace closed source VPN program with OpenVPN

If your VPN provider use a closed source program to connect you to their servers you should consider to switch to OpenVPN because it’s more transparent and gets regular updates, especially if something critical was found. An fantastic guide was written by Mike Williams why you should make the switch.

OpenVPN also gets audits which means the code will be inspected by professionals to reveal possible holes, and the client is secure according to the latest code review last year, the official FAQ also lists the known problems (from years ago).

Speed & Latency

This things depending on which cipher algorithm is choosed, digest algorithm, compression, and your internet speed among the server location.

Final words

If you use your own OpenVPN server, it’s the safe, possibly more than VPN providers, if you use safe algorithms, don’t do compression and disable LZO, you should be in general safe, there are a hell lot of things you need to do to harden your configuration, but this is the very least step. Ask your VPN provider if the provides a .openvpn file so you can easy download it an place it into the openvpn dir, the rest is tweaking for your own needs.

OpenVPN is still one of my ‘must’ use programs on all operating systems and I never heard something negative about it, maybe because there is nothing you can complain about because it basically installs the driver, provides a small and clean gui and the rest is up to your VPN provider or you tweaking skills.

Is it worth? Definitely yes, it’s mostly more secure than using the blooded and spying clients from your VPN providers.

Stay secure friends. 🕵️‍♂️

 

 

2 thoughts on “OpenVPN 2.4.5 is out

    1. Normally the Client not need to block anything outside the tunnel because everything gets already tunneled via the driver which OpenVPN or any other program installs, so I’m not really sure how that should work. If this function is a ‘use port xyz’ function then it only ensures that the traffic within the specific port is used, which is not a security function. The only benefit I saw so so far is that some modded clients like the one which PIA offers, comes with an integrated kill switch function which blocks traffic once the VPN is disconnected/interrupted or extra server related options to enable IPv6 or MACE (ad-blocker) but this theoretically can be enabled (except the kill switch) via the open vpn configuration. I heard that there will also be an kill switch integrated soon or later native into openvpn but I’m not sure how or when.

      Like

Comments are closed.

Blog at WordPress.com.

Up ↑

%d bloggers like this: