SparkLabs Blog.

The latest news and releases.


Viscosity For Mac & Windows: Version 1.7

We're very pleased to announce that version 1.7 of Viscosity is now available for both Mac and Windows! This is one of our biggest updates yet, with significant engineering changes for improved speed and performance, new features, and lots of small tweaks and fixes.

There are a number of enhancements to the user interface, including new ways to manage and import connections. Viscosity's main menu has been overhauled to offer more information at a glance and to make active connections more accessible. IP addresses, traffic totals, and traffic rates can now all be displayed alongside the connection status. The Details window has also been updated to display additional connection information, in particular DNS servers and encryption details for active connections.



Viscosity 1.7 adds support for OpenVPN 2.4, which offers new encryption functionality, improved dual-stack IP support, and many small enhancements. As well as OpenVPN 2.4.2, the OpenVPN 2.3 branch has been updated to version 2.3.16.

Viscosity has also seen many internal improvements on both Mac and Windows platforms to boost speed and performance. The Mac version has been re-implemented from the ground up to remove legacy code and adopt more moden APIs. This has a large and noticeable impact on Viscosity's performance, with everything from startup time to connection processing speed enhanced.

A new "Block IPv6 traffic while connected to IPv4-only connections" option has been added to prevent IPv6 traffic leaks when connecting to VPN connections that tunnel all IPv4 traffic only. The Windows version of Viscosity also now uses the Viscosity DNS System for Full DNS Mode (instead of just Split DNS mode) to prevent any potential DNS leaks due to the Windows DNS System changes in the Windows 10 Creators Update.

We're also pleased to introduce traffic obfuscation (obfsproxy) support in Viscosity. By setting up an obfsproxy server and enabling obfuscation in Viscosity you can avoid connectivity problems on networks that may attempt to block or limit VPN connections, such as some Wi-Fi hotspots or censorship prone areas.

Version 1.7 also contains a large assortment of other small improvements, including editor changes, connection management improvements, improved reconnection behaviour, small requested tweaks, and much more. Please refer to the release notes below for a complete list of changes.


Version 1.7 Mac Release Notes:

added
Active connections are now listed separately in the main menu
added
OpenVPN 2.4 Support
added
Traffic obfuscation support (obfsproxy)
added
New right/control click menu for Preferences->Connections
added
Connections can now be imported by dragging them onto the connections list
added
DNS and encryption information now displayed in the Details window
added
New Block IPv6 when connected to an IPv4 only connection option
added
New Automatically reconnect if disconnected option for connections and folders
improved
Significant performance improvements
improved
Significant memory usage improvements
improved
The system Python framework is no longer required
improved
Ability to get additional connection details via AppleScript
improved
Ability to delete multiple selected connections at once
updated
OpenVPN 2.4 updated to version 2.4.2
updated
OpenVPN 2.3 updated to version 2.3.16
updated
OpenSSL updated to version 1.0.2k
fixed
Various bug fixes and enhancements
removed
OS X 10.8 is no longer supported


Version 1.7 Windows Release Notes:

added
Active connections are now listed separately in the notification tray menu
added
OpenVPN 2.4 Support
added
Traffic obfuscation suppport (obfsproxy)
added
Connections can now be imported by dragging them onto the connections list
added
DNS and encryption information now displayed in the Details window
added
New Block IPv6 when connected to an IPv4-only connection option
added
New Automatically reconnect if disconnected option for connections and folders
improved
DPI scaling improved for multiple windows
improved
Viscosity's DNS System is now used for all DNS modes by defualt
improved
Use Windows DNS System for Full DNS option to disable the above behaviour
updated
OpenVPN updated to 2.4.2
updated
OpenVPN updated to 2.3.16
updated
OpenSSL updated to 1.0.2k
updated
.NET 4.5.2 or later is now required
fixed
Mitigates against stuck DNS servers caused by a forced reboot
fixed
Scripting return values are no longer localized
fixed
Various bug fixes and enhancements
removed
Windows Vista is no longer supported

Finally, please note that version 1.7 ends support for OS X 10.8 and Windows Vista. OS X 10.9 and Windows 7 are now the minimum operating system versions required to be able to run Viscosity.

The 1.7 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.8

Version 1.6.8 of Viscosity has been released for both Mac and Windows! This release includes a number of improvements and bug fixes, an update to OpenVPN 2.3.14, and an important security fix for the Windows version (more information below).


Version 1.6.8 Mac Release Notes:

improved
PKCS#11 users will now be prompted to insert their token when needed
improved
The connection name is now displayed in challenge and password prompts
improved
Improved support for OpenVPN-AS connection scripts
improved
Unsafe command detection updated to allow commands using safe parameters
updated
OpenVPN updated to version 2.3.14
fixed
Resolves issue where an IPv6 Reachability Check may fail under macOS 10.12
fixed
Resolves potential crash when using the main menu while an alert is visible under macOS 10.12
fixed
Reset network interfaces on disconnect option now behaves correctly for multiple active connections
fixed
Various bug fixes and enhancements


Version 1.6.8 Windows Release Notes:

improved
PKCS#11 users will now be prompted to insert their token when needed
improved
Unsafe command detection updated to allow commands using safe parameters
updated
OpenVPN updated to version 2.3.14
fixed
Security: Fixes a potential privilege escalation attack against Viscosity's service
fixed
Various bug fixes and enhancements

This version includes more fine-grained detection of unsafe commands by now also taking the command's parameters into account. Where previously Viscosity may block a command as unsafe, the command could now be considered safe when certain parameter combinations are used. This should allow for less instances where the "Allow unsafe OpenVPN commands to be used" option needs to be enabled without compromising security.

This version also resolves a security issue that been identified in the Windows version of Viscosity that could potentially allow a local user to gain elevated privileges. Local machine access is required, it cannot be exploited remotely, and it does not affect the security of VPN connections. We encourage all Windows users update to version 1.6.8 as soon as possible, particularly those in multi-user or enterprise environments. Thanks to Kacper Szurek for the discovery and notification.

The 1.6.8 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.7

Viscosity version 1.6.7 is now available for both Mac and Windows. This version is a small maintenance release that includes updated versions of OpenVPN and OpenSSL as well as small tweaks and fixes.

The Mac version also includes a work-around for instances where Viscosity may become unresponsive while waiting for a stuck ifconfig process. ifconfig is a system networking tool used by Viscosity and OpenVPN, and there have been reports of it hanging or freezing under OS X 10.11.6 and macOS 10.12.


Version 1.6.7 Mac Release Notes:

updated
OpenVPN updated to version 2.3.13
updated
OpenSSL updated to version 1.0.2j
fixed
Workaround for a potential hang if an ifconfig process is stuck
fixed
Various bug fixes and enhancements


Version 1.6.7 Windows Release Notes:

updated
OpenVPN updated to version 2.3.13
updated
OpenSSL updated to version 1.0.2j
fixed
Various bug fixes and enhancements

The 1.6.7 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.6

Version 1.6.6 of Viscosity has been released for both Mac and Windows! There are a number of new feature additions, improvements, and bug fixes, including an update to OpenVPN 2.3.12.

In particular this release makes it easier to manage multiple connections that share login credentials or scripting actions. Connection folders can now be edited to allow saved credentials to be shared among all connections in the folder, as well as Before Connect, Connected, and Disconnected scripts to be run for all connections in the folder as well. For more information please see Sharing Credentials and Scripts with Multiple Connections.



As part of the update to OpenVPN 2.3.12, a warning message will be now displayed in the connection log if the encryption algorithm (the cipher) being used has a block size of less than 128 bit. This is in response to the recent "Sweet32" attack against ciphers using a 64 block size.

While difficult to exploit, users receiving this warning should consider contacting their VPN Provider and encourage them to update their OpenVPN configuration to use a more secure cipher, such as AES-128-CBC. For example, this can be easily done by adding the command "cipher AES-128-CBC" to the OpenVPN server and client configurations. For more information, and other available countermeasures, please see the Sweet32 information page.


Version 1.6.6 Mac Release Notes:

added
Connections inside a folder can now optionally share saved credentials
added
AppleScript scripts can now be assigned to run for all connections inside a folder
updated
OpenVPN updated to version 2.3.12
fixed
Various bug fixes and enhancements


Version 1.6.6 Windows Release Notes:

added
Connections inside a folder can now optionally share saved credentials
added
Batch and VBS scripts can now be assigned to run for all connections inside a folder
updated
OpenVPN updated to version 2.3.12
fixed
Various bug fixes and enhancements

The 1.6.6 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.5

Viscosity version 1.6.5 is now available for both Mac and Windows. This version includes a number of improvements for Mac users with IPv6 enabled VPN connections and networks, as well as a array of small bug fixes and improvements for both Mac and Windows platforms. The Windows version also updates the VPN Network Adapter driver to better support future Windows versions.


Version 1.6.5 Mac Release Notes:

added
Automatic IPv6 configuration will be automatically enabled/disabled as required for bridged TAP connections
improved
Removes "Display menu icon on right side of menu bar" option under macOS 10.12. The icon can now be rearranged by holding down the Command key and dragging the icon.
improved
The Reset network interfaces on disconnect option is now faster and more effective
fixed
Manual IPv6 addresses will now stay assigned for bridged TAP connections
fixed
Various bug fixes and enhancements


Version 1.6.5 Windows Release Notes:

updated
VPN Network Adapter driver updated
fixed
Various bug fixes and enhancements

The 1.6.5 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.4

Version 1.6.4 of Viscosity has been released for both Mac and Windows! This version includes a number of updated components, including OpenVPN 2.3.11, OpenSSL 1.0.2h, and an update to the Windows VPN Network Adapter driver to improve security.

While the security vulnerabilities addressed in the OpenSSL update are not believed to affect OpenVPN client connections, we still recommend updating. Both releases also include a number of small bug fixes and tweaks based off recent reports and feedback.


Version 1.6.4 Mac Release Notes:

updated
OpenVPN updated to version 2.3.11
updated
OpenSSL updated to version 1.0.2h
fixed
Resolves issue where the TUN/TAP drivers may not unload on helper exit
fixed
Resolves rare issue where the client may fail to launch after an update
fixed
Various bug fixes and enhancements


Version 1.6.4 Windows Release Notes:

updated
OpenVPN updated to version 2.3.11
updated
OpenSSL updated to version 1.0.2h
updated
VPN Network Adapter driver updated
fixed
Various bug fixes and enhancements

The 1.6.4 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity for Windows: Version 1.6.3

Version 1.6.3 of Viscosity for Windows is now available! This version includes a few small tweaks and bug fixes to ensure Viscosity connections run smoothly for Windows users. In particular this release resolves a rare annoying issue where a connection could mistakenly become marked as unreachable and disconnected shortly after connection.


Version 1.6.3 Windows Release Notes:

fixed
Fixes rare issue where reachability check fails after connecting
fixed
Various bug fixes and enhancements


The 1.6.3 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.2

Version 1.6.2 of Viscosity is now available for both Mac and Windows! This is primarily a maintenance release, with lots of bug fixes and small tweaks. Please see the release notes below for the full details.


Version 1.6.2 Mac Release Notes:

added
Adds support for DNS domains to be specified using DHCP Option 119
updated
OpenSSL updated to version 1.0.2g
fixed
Resolves a potential crash after using Import from Server
fixed
Resolves a login issue using Import from Server with certain characters in credentials
fixed
Split DNS changes on DHCP lease renews are now correctly detected
fixed
DNS mode is now correctly detected after an initial connection failure
fixed
Various bug fixes and enhancements


Version 1.6.2 Windows Release Notes:

improved
Split DNS will now match multi-label subdomains
updated
OpenSSL updated to version 1.0.2g
fixed
Resolves rare issue where static DNS settings may not be restored on disconnect
fixed
DNS domains not associated with a VPN connection are now correctly suffixed
fixed
Various bug fixes and enhancements

The 1.6.2 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6.1

Version 1.6.1 of Viscosity for both Mac and Windows is now available! This version follows up the recent 1.6 release with several small requested feature enhancements and bug fixes.

The update adds support for using the Import Connection From Server feature on servers requiring two-factor authentication. Users will now be prompted for their two-factor response when required.

Viscosity also now allows the DNS mode of choice to be pushed remotely from the OpenVPN server using a pushed "dhcp-option" command when Automatic mode is used. For example push "dhcp-option DNSMODE full" or push "dhcp-option DNSMODE split".


Version 1.6.1 Mac Release Notes:

added
Importing from a server now supports two-factor authentication
added
Allows the DNS mode to be pushed from an OpenVPN server using dhcp-option
improved
A warning will now appear in the log if using Split DNS with no DNS domains
fixed
Resolves issue where DHCP may fail to automatically disable
fixed
Resolves rare issue where a reachability check may fail for TCP connections
fixed
Various bug fixes and enhancements


Version 1.6.1 Windows Release Notes:

added
Importing from a server now supports two-factor authentication
added
Allows the DNS mode to be pushed from an OpenVPN server using dhcp-option
improved
A warning will now appear in the log if using Split DNS with no DNS domains
fixed
Fixes a potential bug with multiple Split DNS connections
fixed
Various bug fixes and enhancements

The 1.6.1 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.

Viscosity For Mac & Windows: Version 1.6

We're pleased to announce that version 1.6 of Viscosity is now available for both Mac and Windows! This update contains a huge number of new features, improvements, bug fixes, and tweaks.

We've placed a special focus on overhauling and upgrading Viscosity's DNS system, with new features such as connection specific DNS modes, DHCP assigned DNS and WINS settings, improved support for IPv6 DNS servers, and bringing Viscosity's highly advanced split DNS system to Windows. More information about the DNS changes can be found in the Upcoming DNS Features and Changes in Viscosity 1.6 blog post.

The Details window has also been updated to look at home on recent versions of Mac OS X and Windows, with smoother graph rendering and a more modern appearance. OpenVPN has been updated to version 2.3.10, and OpenSSL has been updated to version 1.0.2f.

Version 1.6 also contains an assortment of other improvements, including support for setting browser web proxies, improved virtual network drivers for Windows 7 and later, workarounds for iCloud clashes that could result in iMessage or Back to My Mac connectivity problems, and many more. Please refer to the release notes below for a complete list of changes.


Version 1.6 Mac Release Notes:

added
New DNS engine for improved reliability and IPv6 support
added
The DNS mode can now be set on a per-connection basis
added
DNS and WINS settings from a remote DHCP server are now supported
added
DNS settings sent by the VPN server can now be ignored
added
Web browser proxy settings can now be set for connections
improved
Details window design and graphing improved
improved
Tun connections now use the inbuilt utun network adapter type
improved
Back to My Mac no longer needs to be disabled while connected
updated
OpenVPN updated to version 2.3.10
updated
OpenSSL updated to version 1.0.2f
fixed
Connecting will no longer interrupt an iMessage session
fixed
Resolves issue setting duplicate IPv6 servers under OS X El Capitan
fixed
Connection startup errors will now be correctly added to the log
fixed
Various bug fixes and enhancements
removed
The Apply DNS settings simultaneously option has been removed
removed
Mac OS 10.7 is no longer supported


Version 1.6 Windows Release Notes:

added
New DNS engine for improved reliability and IPv6 support
added
Split DNS is now supported
added
The DNS mode can now be set on a per-connection basis
added
DNS settings sent by the VPN server can now be ignored
added
Web browser proxy settings can now be set for connections
improved
Details window design and graphing improved
improved
Improved driver for Windows 7+
updated
OpenVPN updated to version 2.3.10
updated
OpenSSL updated to version 1.0.2f
fixed
Windows 10 AOAC Connected Standby is now handled correctly
fixed
Various bug fixes and enhancements
removed
The Apply DNS settings simultaneously option has been removed
removed
Windows XP is no longer supported

Finally, please note that version 1.6 drops support for OS X 10.7 and Windows XP. OS X 10.8 and Windows Vista are now the minimum operating system versions required.

The 1.6 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.