Using XOR compiled OpenVPN with non-patched servers

[grandcanyon]

I compiled OpenVPN with an XOR patch. I have a server that has OpenVPN compiled with it as well. Can I use my compiled client version with a server that doesn't have the patch applied ?

I assume I would just leave this line out of my client side ovpn file and I will be good to go?

scramble obfuscate r7EaFR2DshpQT+QMfQGYO5BXC2BAV8JG

Naturally it wouldn't be scrambled

[Tunnelblick developer]

I've never tried it, but I expect that connecting to an OpenVPN server that does not have the XOR patch works fine with a client OpenVPN that does have the patch, as long as no XOR-patch options are used in the configuration file. You could leave the scramble line out, or make it a comment by prefixing it with "#" or ";".

[grandcanyon]

I tried it and I was able to connect to a non-patched server. I am glad it worked as I didn't want to start over with Obfsproxy. Thanks for providing the patch.

[Tunnelblick developer]

Note that Tunnelblick includes signed binaries of OpenVPN with the patch; they're in subdirectories of

     Tunnelblick.app/Contents/Resources/openvpn.

Note also that signed and notarized kexts are included, too, in

     Tunnelblick.app/Contents/Resources/tap-notarized.kext; and

     Tunnelblick.app/Contents/Resources/tun-notarized.kext.