SparkLabs Blog.

The latest news and releases.


Viscosity For Mac & Windows: Version 1.7.1

Version 1.7.1 of Viscosity is now available for both Mac and Windows! This update is largely a maintenance release, fixing a number of small bugs and regressions. Please see the release notes below for the full details.


Version 1.7.1 Mac Release Notes:

updated
OpenSSL updated to version 1.0.2l
fixed
Resolves issue when processing "dhcp-option DNSMODE" commands
fixed
The Allow unsafe commands option will no longer reset when opening Viscosity
fixed
Resolves issue where an acknowledgement request dialog may be empty
fixed
Resolves issue where certain AppleScript commands had no effect
fixed
Various bug fixes and enhancements


Version 1.7.1 Windows Release Notes:

updated
OpenSSL updated to version 1.0.2l
fixed
All ciphers are now available under OpenVPN 2.4
fixed
Various bug fixes and enhancements

The 1.7.1 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.7

We're very pleased to announce that version 1.7 of Viscosity is now available for both Mac and Windows! This is one of our biggest updates yet, with significant engineering changes for improved speed and performance, new features, and lots of small tweaks and fixes.

There are a number of enhancements to the user interface, including new ways to manage and import connections. Viscosity's main menu has been overhauled to offer more information at a glance and to make active connections more accessible. IP addresses, traffic totals, and traffic rates can now all be displayed alongside the connection status. The Details window has also been updated to display additional connection information, in particular DNS servers and encryption details for active connections.



Viscosity 1.7 adds support for OpenVPN 2.4, which offers new encryption functionality, improved dual-stack IP support, and many small enhancements. As well as OpenVPN 2.4.2, the OpenVPN 2.3 branch has been updated to version 2.3.16.

Viscosity has also seen many internal improvements on both Mac and Windows platforms to boost speed and performance. The Mac version has been re-implemented from the ground up to remove legacy code and adopt more moden APIs. This has a large and noticeable impact on Viscosity's performance, with everything from startup time to connection processing speed enhanced.

A new "Block IPv6 traffic while connected to IPv4-only connections" option has been added to prevent IPv6 traffic leaks when connecting to VPN connections that tunnel all IPv4 traffic only. The Windows version of Viscosity also now uses the Viscosity DNS System for Full DNS Mode (instead of just Split DNS mode) to prevent any potential DNS leaks due to the Windows DNS System changes in the Windows 10 Creators Update.

We're also pleased to introduce traffic obfuscation (obfsproxy) support in Viscosity. By setting up an obfsproxy server and enabling obfuscation in Viscosity you can avoid connectivity problems on networks that may attempt to block or limit VPN connections, such as some Wi-Fi hotspots or censorship prone areas.

Version 1.7 also contains a large assortment of other small improvements, including editor changes, connection management improvements, improved reconnection behaviour, small requested tweaks, and much more. Please refer to the release notes below for a complete list of changes.


Version 1.7 Mac Release Notes:

added
Active connections are now listed separately in the main menu
added
OpenVPN 2.4 Support
added
Traffic obfuscation support (obfsproxy)
added
New right/control click menu for Preferences->Connections
added
Connections can now be imported by dragging them onto the connections list
added
DNS and encryption information now displayed in the Details window
added
New Block IPv6 when connected to an IPv4 only connection option
added
New Automatically reconnect if disconnected option for connections and folders
improved
Significant performance improvements
improved
Significant memory usage improvements
improved
The system Python framework is no longer required
improved
Ability to get additional connection details via AppleScript
improved
Ability to delete multiple selected connections at once
updated
OpenVPN 2.4 updated to version 2.4.2
updated
OpenVPN 2.3 updated to version 2.3.16
updated
OpenSSL updated to version 1.0.2k
fixed
Various bug fixes and enhancements
removed
OS X 10.8 is no longer supported


Version 1.7 Windows Release Notes:

added
Active connections are now listed separately in the notification tray menu
added
OpenVPN 2.4 Support
added
Traffic obfuscation suppport (obfsproxy)
added
Connections can now be imported by dragging them onto the connections list
added
DNS and encryption information now displayed in the Details window
added
New Block IPv6 when connected to an IPv4-only connection option
added
New Automatically reconnect if disconnected option for connections and folders
improved
DPI scaling improved for multiple windows
improved
Viscosity's DNS System is now used for all DNS modes by defualt
improved
Use Windows DNS System for Full DNS option to disable the above behaviour
updated
OpenVPN updated to 2.4.2
updated
OpenVPN updated to 2.3.16
updated
OpenSSL updated to 1.0.2k
updated
.NET 4.5.2 or later is now required
fixed
Mitigates against stuck DNS servers caused by a forced reboot
fixed
Scripting return values are no longer localized
fixed
Various bug fixes and enhancements
removed
Windows Vista is no longer supported

Finally, please note that version 1.7 ends support for OS X 10.8 and Windows Vista. OS X 10.9 and Windows 7 are now the minimum operating system versions required to be able to run Viscosity.

The 1.7 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.8

Version 1.6.8 of Viscosity has been released for both Mac and Windows! This release includes a number of improvements and bug fixes, an update to OpenVPN 2.3.14, and an important security fix for the Windows version (more information below).


Version 1.6.8 Mac Release Notes:

improved
PKCS#11 users will now be prompted to insert their token when needed
improved
The connection name is now displayed in challenge and password prompts
improved
Improved support for OpenVPN-AS connection scripts
improved
Unsafe command detection updated to allow commands using safe parameters
updated
OpenVPN updated to version 2.3.14
fixed
Resolves issue where an IPv6 Reachability Check may fail under macOS 10.12
fixed
Resolves potential crash when using the main menu while an alert is visible under macOS 10.12
fixed
Reset network interfaces on disconnect option now behaves correctly for multiple active connections
fixed
Various bug fixes and enhancements


Version 1.6.8 Windows Release Notes:

improved
PKCS#11 users will now be prompted to insert their token when needed
improved
Unsafe command detection updated to allow commands using safe parameters
updated
OpenVPN updated to version 2.3.14
fixed
Security: Fixes a potential privilege escalation attack against Viscosity's service
fixed
Various bug fixes and enhancements

This version includes more fine-grained detection of unsafe commands by now also taking the command's parameters into account. Where previously Viscosity may block a command as unsafe, the command could now be considered safe when certain parameter combinations are used. This should allow for less instances where the "Allow unsafe OpenVPN commands to be used" option needs to be enabled without compromising security.

This version also resolves a security issue that been identified in the Windows version of Viscosity that could potentially allow a local user to gain elevated privileges. Local machine access is required, it cannot be exploited remotely, and it does not affect the security of VPN connections. We encourage all Windows users update to version 1.6.8 as soon as possible, particularly those in multi-user or enterprise environments. Thanks to Kacper Szurek for the discovery and notification.

The 1.6.8 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.7

Viscosity version 1.6.7 is now available for both Mac and Windows. This version is a small maintenance release that includes updated versions of OpenVPN and OpenSSL as well as small tweaks and fixes.

The Mac version also includes a work-around for instances where Viscosity may become unresponsive while waiting for a stuck ifconfig process. ifconfig is a system networking tool used by Viscosity and OpenVPN, and there have been reports of it hanging or freezing under OS X 10.11.6 and macOS 10.12.


Version 1.6.7 Mac Release Notes:

updated
OpenVPN updated to version 2.3.13
updated
OpenSSL updated to version 1.0.2j
fixed
Workaround for a potential hang if an ifconfig process is stuck
fixed
Various bug fixes and enhancements


Version 1.6.7 Windows Release Notes:

updated
OpenVPN updated to version 2.3.13
updated
OpenSSL updated to version 1.0.2j
fixed
Various bug fixes and enhancements

The 1.6.7 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.6

Version 1.6.6 of Viscosity has been released for both Mac and Windows! There are a number of new feature additions, improvements, and bug fixes, including an update to OpenVPN 2.3.12.

In particular this release makes it easier to manage multiple connections that share login credentials or scripting actions. Connection folders can now be edited to allow saved credentials to be shared among all connections in the folder, as well as Before Connect, Connected, and Disconnected scripts to be run for all connections in the folder as well. For more information please see Sharing Credentials and Scripts with Multiple Connections.



As part of the update to OpenVPN 2.3.12, a warning message will be now displayed in the connection log if the encryption algorithm (the cipher) being used has a block size of less than 128 bit. This is in response to the recent "Sweet32" attack against ciphers using a 64 block size.

While difficult to exploit, users receiving this warning should consider contacting their VPN Provider and encourage them to update their OpenVPN configuration to use a more secure cipher, such as AES-128-CBC. For example, this can be easily done by adding the command "cipher AES-128-CBC" to the OpenVPN server and client configurations. For more information, and other available countermeasures, please see the Sweet32 information page.


Version 1.6.6 Mac Release Notes:

added
Connections inside a folder can now optionally share saved credentials
added
AppleScript scripts can now be assigned to run for all connections inside a folder
updated
OpenVPN updated to version 2.3.12
fixed
Various bug fixes and enhancements


Version 1.6.6 Windows Release Notes:

added
Connections inside a folder can now optionally share saved credentials
added
Batch and VBS scripts can now be assigned to run for all connections inside a folder
updated
OpenVPN updated to version 2.3.12
fixed
Various bug fixes and enhancements

The 1.6.6 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.5

Viscosity version 1.6.5 is now available for both Mac and Windows. This version includes a number of improvements for Mac users with IPv6 enabled VPN connections and networks, as well as a array of small bug fixes and improvements for both Mac and Windows platforms. The Windows version also updates the VPN Network Adapter driver to better support future Windows versions.


Version 1.6.5 Mac Release Notes:

added
Automatic IPv6 configuration will be automatically enabled/disabled as required for bridged TAP connections
improved
Removes "Display menu icon on right side of menu bar" option under macOS 10.12. The icon can now be rearranged by holding down the Command key and dragging the icon.
improved
The Reset network interfaces on disconnect option is now faster and more effective
fixed
Manual IPv6 addresses will now stay assigned for bridged TAP connections
fixed
Various bug fixes and enhancements


Version 1.6.5 Windows Release Notes:

updated
VPN Network Adapter driver updated
fixed
Various bug fixes and enhancements

The 1.6.5 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.4

Version 1.6.4 of Viscosity has been released for both Mac and Windows! This version includes a number of updated components, including OpenVPN 2.3.11, OpenSSL 1.0.2h, and an update to the Windows VPN Network Adapter driver to improve security.

While the security vulnerabilities addressed in the OpenSSL update are not believed to affect OpenVPN client connections, we still recommend updating. Both releases also include a number of small bug fixes and tweaks based off recent reports and feedback.


Version 1.6.4 Mac Release Notes:

updated
OpenVPN updated to version 2.3.11
updated
OpenSSL updated to version 1.0.2h
fixed
Resolves issue where the TUN/TAP drivers may not unload on helper exit
fixed
Resolves rare issue where the client may fail to launch after an update
fixed
Various bug fixes and enhancements


Version 1.6.4 Windows Release Notes:

updated
OpenVPN updated to version 2.3.11
updated
OpenSSL updated to version 1.0.2h
updated
VPN Network Adapter driver updated
fixed
Various bug fixes and enhancements

The 1.6.4 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity for Windows: Version 1.6.3

Version 1.6.3 of Viscosity for Windows is now available! This version includes a few small tweaks and bug fixes to ensure Viscosity connections run smoothly for Windows users. In particular this release resolves a rare annoying issue where a connection could mistakenly become marked as unreachable and disconnected shortly after connection.


Version 1.6.3 Windows Release Notes:

fixed
Fixes rare issue where reachability check fails after connecting
fixed
Various bug fixes and enhancements


The 1.6.3 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.2

Version 1.6.2 of Viscosity is now available for both Mac and Windows! This is primarily a maintenance release, with lots of bug fixes and small tweaks. Please see the release notes below for the full details.


Version 1.6.2 Mac Release Notes:

added
Adds support for DNS domains to be specified using DHCP Option 119
updated
OpenSSL updated to version 1.0.2g
fixed
Resolves a potential crash after using Import from Server
fixed
Resolves a login issue using Import from Server with certain characters in credentials
fixed
Split DNS changes on DHCP lease renews are now correctly detected
fixed
DNS mode is now correctly detected after an initial connection failure
fixed
Various bug fixes and enhancements


Version 1.6.2 Windows Release Notes:

improved
Split DNS will now match multi-label subdomains
updated
OpenSSL updated to version 1.0.2g
fixed
Resolves rare issue where static DNS settings may not be restored on disconnect
fixed
DNS domains not associated with a VPN connection are now correctly suffixed
fixed
Various bug fixes and enhancements

The 1.6.2 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.1

Version 1.6.1 of Viscosity for both Mac and Windows is now available! This version follows up the recent 1.6 release with several small requested feature enhancements and bug fixes.

The update adds support for using the Import Connection From Server feature on servers requiring two-factor authentication. Users will now be prompted for their two-factor response when required.

Viscosity also now allows the DNS mode of choice to be pushed remotely from the OpenVPN server using a pushed "dhcp-option" command when Automatic mode is used. For example push "dhcp-option DNSMODE full" or push "dhcp-option DNSMODE split".


Version 1.6.1 Mac Release Notes:

added
Importing from a server now supports two-factor authentication
added
Allows the DNS mode to be pushed from an OpenVPN server using dhcp-option
improved
A warning will now appear in the log if using Split DNS with no DNS domains
fixed
Resolves issue where DHCP may fail to automatically disable
fixed
Resolves rare issue where a reachability check may fail for TCP connections
fixed
Various bug fixes and enhancements


Version 1.6.1 Windows Release Notes:

added
Importing from a server now supports two-factor authentication
added
Allows the DNS mode to be pushed from an OpenVPN server using dhcp-option
improved
A warning will now appear in the log if using Split DNS with no DNS domains
fixed
Fixes a potential bug with multiple Split DNS connections
fixed
Various bug fixes and enhancements

The 1.6.1 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.