From f07fb0c53d83f4033a07fb31f4bf3fabbf518125 Mon Sep 17 00:00:00 2001 From: Davide De Rosa Date: Mon, 8 Jul 2019 08:57:01 +0200 Subject: [PATCH] . --- disclaimer/index.html | 14 +++++++------- donation/index.html | 14 +++++++------- faq/index.html | 34 +++++++++++++++++++++++++++------- feed.xml | 2 +- index.html | 14 +++++++------- privacy/index.html | 14 +++++++------- 6 files changed, 56 insertions(+), 36 deletions(-) diff --git a/disclaimer/index.html b/disclaimer/index.html index 4221108..c8760fa 100644 --- a/disclaimer/index.html +++ b/disclaimer/index.html @@ -21,7 +21,7 @@ - + @@ -31,23 +31,23 @@ - + - + - - + + - - + + diff --git a/donation/index.html b/donation/index.html index 2da727d..fafd27a 100644 --- a/donation/index.html +++ b/donation/index.html @@ -21,7 +21,7 @@ - + @@ -31,23 +31,23 @@ - + - + - - + + - - + + diff --git a/faq/index.html b/faq/index.html index ac04537..b988be7 100644 --- a/faq/index.html +++ b/faq/index.html @@ -21,7 +21,7 @@ - + @@ -31,23 +31,23 @@ - + - + - - + + - - + + @@ -66,6 +66,7 @@
  • Why is compression not supported?
  • I’m on Wi-Fi but my device shows I’m connected via LTE
  • The configuration file contains an unsupported option (external file)
    • +
  • The VPN connects but immediately disconnects with “Encryption failed”
  • Why don’t Siri Shortcuts execute in the background?
  • It seems that my traffic doesn’t necessarily go through the VPN
  • I’d like to see a Today Widget in the Notification Center
    • @@ -117,6 +118,25 @@ content of my-ca.crt

    The same applies to other settings like cert, key, tls-auth and tls-crypt.

    +

    The VPN connects but immediately disconnects with “Encryption failed”

    + +

    This happens when you rely on default OpenVPN encryption, which is normally Blowfish. The algorithm, besides being unsupported by Passepartout, is also weak and therefore discouraged. In order to fix this issue, you must switch to AES encryption. Passepartout only supports AES, be it in CBC or GCM mode.

    + +

    Set encryption explicitly in the server configuration, e.g.:

    + +
    cipher AES-128-CBC
+auth SHA1
+
    + +

    and don’t forget to update the client .ovpn as well with the exact same parameters.

    + +

    If you want to leverage newer AES-GCM encryption, you could just use:

    + +
    ncp-ciphers AES-256-GCM   # or AES-128-GCM
+
    + +

    and the client wouldn’t need to change a thing, because the algorithm will be enforced by the server no matter what.

    +

    Why don’t Siri Shortcuts execute in the background?

    Unfortunately Apple is guilty of not fixing a related bug. I mean, it’s been there for years -since iOS 9 with my first bug report dating back to 2017- without them caring at all. No feedback and not even a proper response. And of course, no progress.

    diff --git a/feed.xml b/feed.xml index 0669c19..91a31f9 100644 --- a/feed.xml +++ b/feed.xml @@ -1 +1 @@ -Jekyll2019-07-01T11:25:09+02:00https://passepartoutvpn.app/feed.xmlPassepartout, OpenVPN client for iOS and macOSPassepartout is a non-official, user-friendly OpenVPN® client for iOS and macOS.Davide De Rosa \ No newline at end of file +Jekyll2019-07-08T08:57:00+02:00https://passepartoutvpn.app/feed.xmlPassepartout, OpenVPN client for iOS and macOSPassepartout is a non-official, user-friendly OpenVPN® client for iOS and macOS.Davide De Rosa \ No newline at end of file diff --git a/index.html b/index.html index 55ffb66..81cbb94 100644 --- a/index.html +++ b/index.html @@ -21,7 +21,7 @@ - + @@ -31,23 +31,23 @@ - + - + - - + + - - + + diff --git a/privacy/index.html b/privacy/index.html index cc704d5..00aeec8 100644 --- a/privacy/index.html +++ b/privacy/index.html @@ -21,7 +21,7 @@ - + @@ -31,23 +31,23 @@ - + - + - - + + - - + +