[nog] SoftEther

Boyan Krosnov boyan at krosnov.org
Tue Jan 20 10:58:57 EET 2015

Hi MM,

At first glance this seems like it can do everything under the sun and more.

The code base size of ~400 kLOC is just scary for a security project.
Also this kind of agility in terms of protocol and cipher selection is 
opposite to the level of security one can get. For example OPENVPN-NL 
are doing the right thing (even though they did not select the latest 
and greatest crypto). If you are going to use SoftEther consider 
restricting the enabled options to a minimum.

Best regards,

More information about the Nog mailing list