Hi, openconnect works great for me with PFS. However it would be nice if the usage of PFS would be visible from the log output. For example I see this in the log output: Established DTLS connection (using GnuTLS). Ciphersuite (DTLS0.9)-(RSA)-(AES-256-CBC)-(SHA1). while I enforced PFS and the wireshark also says that the DHE variant is being used. Thanks Bj?rn -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 181 bytes Desc: Digital signature URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20150225/d73cea15/attachment.sig>
