With pleasure we announce the release of version 1.1pre3. Here is a summary of the changes: * New experimental protocol: * Uses 521 bit ECDSA keys for authentication. * Uses AES-256-CTR and HMAC-SHA256. * Always provides perfect forward secrecy. * Used for both meta-connections and VPN packets. * VPN packets are encrypted end-to-end. * Many improvements to tincctl: * "config" command shows/adds/changes configuration variables. * "export" and "import" commands help exchange configuration files. * "init" command sets up initial configuration files. * "info" command shows details about a node, subnet or address. * "log" command shows live log messages. * Without a command it acts as a shell, with history and TAB completion. * Improved starting/stopping tincd. * Improved graph output. * When trying to directly send UDP packets to a node for which multiple addresses are known, all of them are tried. * Many small fixes, code cleanups and documentation updates. This is the third pre-release of the 1.1 branch of tinc. Tinc 1.1 is protocol compatible with 1.0.x, but will have large architectural changes and new features. Tinc 1.0.x will still be maintained. Please try out this new version, and let us know what you think of, and report any bugs you find. If you use the ExperimentalProtocol option, then tinc 1.1pre3 is still compatible with 1.0.x and other 1.1pre3 nodes, but will not be compatible with 1.1pre2 nodes. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc-devel/attachments/20121014/e6206a4b/attachment.pgp>