Support of Outdated Encryption Algorithms

SafeUTM is based on Fedora operating system. In Fedora 33, which was used in the previous SafeUTM version, the current system-wide encryption policy has been updated to further disable outdated cryptographic protocols (TLS 1.0 and TLS 1.1), weak Diffie-Hellman key exchange sizes (1024 bits), and the use of SHA-1 hash in signatures. You can read more about changes in the algorithm policy in the article.

Outdated algorithms, like (cryptographic) hashing and encryption, usually have a lifetime after which they are considered either too risky or even unsafe to use.

You may have problems related to HTTPS, for example, when running OWA (web interface for accessing Microsoft Exchange). If you encounter this, follow these steps to switch to the encryption policy levels compatibility mode:

Log in to the SafeUTM console. This can be done from the local menu, SSH, or SafeUTM web interface.
Enter update-crypto-policies --set DEFAULT:FEDORA32 the command in the terminal.
Reboot SafeUTM.

We strongly do not recommend using this setting, since after the next update of SafeUTM compatibility mode settings will be reset. And in newer versions, this feature will be disabled.

Instructions for Creating VPN connection in Ubuntu

Automatic Connection Creation

Creating a VPN connection in Windows 10

Creating a VPN connection in Windows 7

Instructions for Creating VPN Connection on Mobile Devices

Instructions for creating a connection in Mac OS

Connecting Wi-Fi Keenetic Routers via SSTP

Error ERR_CONNECTION_TIMED_OUT When Opening Site or Site Does Not Open

What to Do If Internet Does Not Work

Authorization error "The browser is outdated"

Support of Outdated Encryption Algorithms