Highlighted Articles
  News
  Installing Tunnelblick
  Uninstalling Tunnelblick
  Setting up Configurations
  Using Tunnelblick
  Getting VPN Service
  Common Problems
  Configuring OpenVPN
  Release Notes
  Thanks
  FAQ

Discussion Group
Read Before You Post

Release Notes

On This Page
    Version 6
    Version 5
    Version 4
    Version 3.8
    Older Versions of Tunnelblick
    Uninstaller

Version 6

6.0beta04 build 6080 (2024-07-18)

Updates OpenVPN to version 2.6.12 from 2.6.11 (also includes OpenVPN 2.5.9 and 2.4.11), see Changes in OpenVPN 2.6.
Updates localization.

6.0beta03 build 6070 (2024-06-23) (SECURITY UPDATE)

Fixes using an outdated URL for appcasts.

6.0beta02 build 6060 (2024-06-23) (SECURITY UPDATE)

Fixes a problem that causes 6.0beta01 to crash on some macOS configurations.

6.0beta01 build 6050 (2024-06-22) (SECURITY UPDATE)

Updates OpenVPN to version 2.6.11 from 2.6.9 (also includes OpenVPN 2.5.9 and 2.4.11), see Changes in OpenVPN 2.6.
Updates OpenSSL to version 3.0.14 3.0.13 (also includes OpenSSL 1.1.1w), see OpenSSL 3.0 Series Release Notes.
Tunnelblick no longer interrupts other applications to announce the availability of a Tunnelblick update. Instead, a yellow "caution" badge is added to the Tunnelblick icon in the menu/status bar and a menu item is available to display update information and options.
Any user can update Tunnelblick without administrator authorization. (Requires one-time setting by a computer administrator.)
If administrator authorization is required for a Tunnelblick update, it is only required once, not twice.
Tunnelblick update checks can be restricted to only happen when a VPN is active.
Tunnelblick updates can be downloaded either when detected or when they are being installed.
Adds a 'doNotShowHaveNoConfigurationsGuide' preference.
Fixes a failure to install a login item.
Fix poor display of the 'login item is disabled' window in dark mode.

Version 5

5.0.1beta01 build 6020 (2024-04-04)

Complains and quits Tunnelblick if the user has disabled a background program it requires.
Updates localization.
Fixes macOS misidentifying a Tunnelblick background program as "Jonathan Bullard".
Fixes Tunnelblick problems that caused connection retries to happen too often, sometimes locking up Tunnelblick.
Fixes a problem installing Tunnelblick VPN Configurations that contain an OpenVPN configuration file not named "config.ovpn".

5.0.0beta02 build 6010 (2024-03-12)

Fixes a problem that caused the loss of the local DNS configuration on disconnection (Issue 789).
Fixes a problem that caused Tunnelblick to fail to launch automatically at login.

See Tunnelblick 4 for more information if you update from Tunnelblick 3.

5.0.0beta01 build 6000 (2024-03-08) (SECURITY UPDATE)

(none)

Version 4

4.0.1 build 5971 (2024-03-12)

Fixes a problem that caused the loss of the local DNS configuration on disconnection (Issue 789).
Fixes a problem that caused Tunnelblick to fail to launch automatically at login.

See Tunnelblick 4 for more information.

4.0.0 build 5970 (2024-03-08) (SECURITY UPDATE)

Adds support for client-pending-auth with WEB_AUTH.
Adds commands to install private and shared configurations from the command line.
Changes the versions of OpenVPN/OpenSSL that are included.
Changes the default version of OpenVPN/OpenSSL used for connecting.
Includes several other improvements and fixes many problems.

See Tunnelblick 4 for more information.

4.0.0beta16 build 5960 (2024-02-27) (SECURITY UPDATE)

Fixes a security vulnerability when installing Tunnelblick.
Fixes a problem when no OpenVPN "dhcp-option: options are specified and Tunnelblick's "Monitor network settings" is checked.
Fixes problems loading system extensions automatically.
Includes OpenVPN 2.4.12, 2.5.9, and 2.6.9 with OpenSSL 1.1.1w, and OpenVPN 2.6.9 with OpenSSL 3.0.13.

4.0.0beta15 build 5950 (2024-02-12)

Defaults to use OpenVPN 2.6 and OpenSSL 3.0 instead of OpenVPN 2.5 and OpenSSL 1.1.1.
Includes OpenVPN 2.6.9, replacing 2.6.8. See Changes in OpenVPN 2.6.
Allows disabling IPv6 and/or secondary network services even if no dhcp-option is specified.
Fixes a problem when Tunnelblick is not installed by double-clicking.
Includes OpenVPN 2.4.12, 2.5.9, and 2.6.9 with OpenSSL 1.1.1w, and OpenVPN 2.6.9 with OpenSSL 3.0.13.

4.0.0beta13 build 5930 (2023-11-21) (SECURITY UPDATE)

Fixes a problem installing configurations.

4.0.0beta12 build 5920 (2023-11-19) (SECURITY UPDATE)

Includes OpenVPN 2.6.8, replacing 2.6.6. See Changes in OpenVPN 2.6.
Enables the 'Copy Diagnostic Info to Clipboard' button even if there are no configurations.
Always requires administrator authorization to add or modify an OpenVPN configuration file that has an 'client-crresponse' option.
Includes OpenVPN 2.4.12, 2.5.9, and 2.6.8 with OpenSSL 1.1.1w, and OpenVPN 2.6.8 with OpenSSL 3.0.12.

4.0.0beta11 build 5910 (2023-11-05) (SECURITY UPDATE)

Fixes a problem installing or securing configurations.

4.0.0beta10 build 5900 (2023-10-25) (SECURITY UPDATE)

Includes OpenSSL 3.0.12, replacing 3.0.10. See OpenSSL 3.0 Series Release Notes for details.
Adds support for client-pending-auth with WEB_AUTH.
Runs only on macOS 10.13 and later.
Includes OpenVPN 2.4.12, 2.5.9, and 2.6.6 with OpenSSL 1.1.1w, and OpenVPN 2.6.6 with OpenSSL 3.0.12.

4.0.0beta09 build 5890 (2023-09-11) (SECURITY UPDATE)

Includes OpenVPN 2.6.6, replacing 2.6.5, and OpenSSL 1.1.1w, replacing 1.1.1v.
Includes the installer log in the Diagnostic Info.
Updates localization.
Fixes several problems.

4.0.0beta08 build 5880 (2023-08-05) (SECURITY UPDATE)

Fixes a problem installing Tunnelblick 4.0.0beta07.

4.0.0beta07 build 5870 (2023-08-02) (SECURITY UPDATE)

Fixes several security vulnerabilities. See Assisted Local Privilege Escalation and Arbitrary File Overwrite Vulnerabilities.
Warns if updated or modified configurations may run scripts.
Includes OpenVPN 2.6.5, replacing 2.6.4. See Changes in OpenVPN 2.6.
Includes OpenSSL 1.1.1v, replacing 1.1.1u. See OpenSSL 1.1.1 Series Release Notes.
Includes OpenSSL 3.0.10, replacing 3.0.9. See OpenSSL 3.0 Series Release Notes.
Fixes problems with some TAP connections.
Fixes problems if a macOS string manipulation method fails.
Fixes a problem determining the username when using Tunnelblick's installer from the command line.

4.0.0beta06 build 5860 (2023-06-04) (SECURITY UPDATE)

Includes OpenSSL 1.1.1u, replacing 1.1.1t. See OpenSSL 1.1.1 Series Release Notes.
Includes OpenSSL 3.0.9, replacing 3.0.8. See OpenSSL 3.0 Series Release Notes.
Includes OpenVPN 2.6.4, replacing 2.6.3. See Changes in OpenVPN 2.6.
Adds installer commands to install private and shared configurations from the command line. See Installing and Deleting VPN Configurations.
No longer converts 10-year-old OpenVPN setups automatically.
Fixes a problem with fast user switching (GitHub Issue #738).
Fixes several other minor problems.

4.0.0beta05 build 5850 (2023-05-05)

Adds OpenVPN 2.6.3 with OpenSSL 3.0.8.
Removes OpenVPN 2.3.18, OpenSSL 1.0, and LibreSSL.
Adds the "install private configurations" AppleScript command.
Truncates the OpenVPN log if it becomes too large (GitHub Issue #739).
Fixes a problem with Tunnelblick "freezing" when the OpenVPN log grows too quickly.
Fixes problems warning about deprecated, removed, and added OpenVPN options.
Fixes a problem after importing configurations (GitHub Issue #723).
Fixes a problem when usernames or passwords contain CR or LF characters.
Fixes a problem when run on macOS versions below 12.3.

4.0.0beta04 build 5840 (2023-04-24)

Fixes a problem using OpenVPN 2.6.3 (GitHub Issue #751).

4.0.0beta03 build 5830 (2023-04-23)

Includes OpenVPN 2.6.3, replacing 2.6.0. See Changes in OpenVPN 2.6.
Fixes a problem installing configurations with 'up' commands that run binary executables instead of scripts (GitHub Issue #726).
Fixes a problem that caused the Tunnelblick login item to be shown as being from an unidentified developer on macOS Ventura (GitHub Issue #742).
Fixes a problem that caused the display of long configuration names to be truncated (GitHub Issue #744).
Updates localization.

4.0.0beta02 build 5820 (2023-02-16)

Fixes a problem on Apple Silicon Macs that do not have Rosetta 2 installed.
Includes OpenVPN 2.5.9, replacing 2.5.8. See Changes in OpenVPN 2.5.9.

4.0.0beta01 build 5810 (2023-02-15)

Includes OpenSSL 1.1.1t, replacing 1.1.1o. See OpenSSL 1.1.1 Change Log.
Includes OpenVPN 2.5.8, replacing 2.5.6. See Changes in OpenVPN 2.5.8.
Includes OpenVPN 2.6.0. See Changes in OpenVPN 2.6.
Does not need TAP device driver; uses macOS built-in driver instead.
Fixes a misleading error message.

Version 3.8

3.8.8g build 5779.3 (2023-12-03) (SECURITY UPDATE)

Fixes a problem running Tunnelblick's privileged helper.

3.8.8f build 5779.2 (2023-11-29) (SECURITY UPDATE)

Fixes several problems installing configurations and installing and running Tunnelblick.

3.8.8e build 5779.1 (2023-10-25) (SECURITY UPDATE)

Fixes several problems installing and running Tunnelblick.
Runs only on macOS 10.13 and later.
Includes OpenVPN 2.3.18 with LibreSSL 2.7.1 and OpenSSL 1.0.2u, and OpenVPN 2.4.12 and 2.5.9 with OpenSSL 1.1.1v.

3.8.8d build 5779 (2023-08-05) (SECURITY UPDATE)

Fixes a problem installing Tunnelblick 3.8.8c.

3.8.8c build 5778 (2023-08-02) (SECURITY UPDATE)

Fixes several security vulnerabilities. See Assisted Local Privilege Escalation and Arbitrary File Overwrite Vulnerabilities.
Warns if converted, updated, or modified configurations may run scripts.
Includes OpenSSL 1.1.1v, replacing 1.1.1u. See OpenSSL 1.1.1 Series Release Notes.
Discontinues migrating old file layout to 'new' (new 10 years ago) layout.
Discontinues converting .ovpn and .conf files found in Tunnelblick's standard folder to Tunnelblick VPN Configurations.

3.8.8b build 5777 (2023-06-04) (SECURITY UPDATE)

Includes OpenSSL 1.1.1u, replacing 1.1.1t. See OpenSSL 1.1.1 Series Release Notes.

3.8.8a build 5776 (2023-02-16)

Fixes a problem on Apple Silicon Macs that do not have Rosetta 2 installed.
Includes OpenVPN 2.5.9, replacing 2.5.8. See Changes in OpenVPN 2.5.9.

3.8.8 build 5775 (2023-02-15)

Includes OpenSSL 1.1.1t, replacing 1.1.1o. See OpenSSL 1.1.1 Change Log.
Includes OpenVPN 2.5.8, replacing 2.5.6. See Changes in OpenVPN 2.5.8.

3.8.8beta04 build 5800 (2022-05-05) (SECURITY UPDATE)

Includes OpenSSL 1.1.1o, replacing 1.1.1m. See OpenSSL Security Advisory 03 May 2022.
Includes OpenVPN 2.5.6, replacing 2.5.5. See Changes in OpenVPN 2.5.6.
Includes OpenVPN 2.4.12, replacing 2.4.11. See Changes in OpenVPN 2.4.12.
Updates the message shown when the IP address was changed successfully after a VPN connection.

3.8.8beta03 build 5790 (2021-12-23)

Includes OpenSSL 1.1.1m, replacing 1.1.1l
Includes OpenVPN 2.5.5, replacing 2.5.4.
Includes a new checkbox, "Disable secondary network interfaces".
Always includes OpenSSL 2.3.18; running Tunnelblick in Rosetta is no longer required.
Warns if running under Rosetta.
Hides the security token checkbox and textbox in the VPN login window if the per-configuration "-loginWindowSecurityTokenIsHidden" preference is true. (The preference should be set using the 'default' command.)
Warns if DNS settings are not as expected after connecting.

3.8.8beta02 build 5780 (2021-11-30) (SECURITY UPDATE)

(No changes.)

3.8.7a build 5770 (2021-11-30) (SECURITY UPDATE)

Fixes a problem connecting configurations in subfolders.
Fixes a problem that omitted a version of OpenVPN when running under Rosetta.

3.8.8beta01 build 5760 (2021-11-28) (SECURITY UPDATE)

(No changes.)

3.8.7 build 5750 (2021-11-28) (SECURITY UPDATE)

Enhances the security of access to the OpenVPN management interface.
Fixes problems with some warnings in dark mode.

3.8.7beta03 build 5740 (2021-10-30)

Updates OpenVPN to version 2.5.4 from version 2.5.3. (Also includes 2.3.18 and 2.4.11.)
Shows the login window on all spaces.
Fixes a problem that prevented loading of kexts on macOS Monterey.
Fixes problems that caused Tunnelblick to crash or hang.

3.8.7beta02 build 5730 (2021-09-01) (SECURITY UPDATE)

Fixes a problem that caused Tunnelblick to crash.

3.8.7beta01 build 5720 (2021-08-24) (SECURITY UPDATE)

(No changes)

3.8.6a build 5711 (2021-09-01) (SECURITY UPDATE)

Fixes a problem that caused Tunnelblick to crash.

3.8.6 build 5710 (2021-08-24) (SECURITY UPDATE)

Updates OpenSSL to 1.1.1l from 1.1.1k. See OpenSSL Security Advisory 24 August 2021.
Sets the initial focus of the VPN login window to the security token text field if the password is filled in.
Fixes a problem that caused configurations to be disabled when first installed.

3.8.6beta06 build 5707 (2021-08-17)

PREVIEW: For testing only. Runs natively on M1 and Intel Macs.
Fixes a failure to run post-disconnect.sh scripts when Tunnelblick shuts down.
Fixes a problem that caused updates to fail.

3.8.6beta05 build 5706 (2021-06-26)

PREVIEW: For testing only. Runs natively on M1 and Intel Macs.
Fixes a bug that can cause undefined behavior.

3.8.6beta04 build 5705 (2021-06-19)

PREVIEW: For testing only. Runs natively on M1 and Intel Macs.
Replaces OpenVPN 2.5.2 with 2.5.3.
Changes the default version of OpenVPN from 2.4 to 2.5.
Allows the new "auth-token-user" OpenVPN option.
Includes additional debugging information.

3.8.6beta03 build 5700 (2021-04-22) (SECURITY UPDATE)

Fixes a problem retrieving saved usernames and passwords.

3.8.6beta02 build 5690 (2021-04-21) (SECURITY UPDATE)

Updates Openvpn 2.5.1 to 2.5.2. See Overview of changes in 2.5.2 for details.
Updates Openvpn 2.4.10 to 2.4.11. See Overview of changes in 2.4.11 for details.
Optionally allows the code from an authentication device to be entered in the VPN login window with the username and password.

3.8.6beta01 build 5680 (2021-04-11)

If a fatal error occurs in a beta version of Tunnelblick, macOS will force quit Tunnelblick without notifying the user. On the next launch of Tunnelblick the user will be asked to email extended diagnostic data to the developers.

3.8.5a build 5671 (2021-04-21) (SECURITY UPDATE)

Updates Openvpn 2.5.1 to 2.5.2. See Overview of changes in 2.5.2 for details.
Updates Openvpn 2.4.10 to 2.4.11. See Overview of changes in 2.4.11 for details.

3.8.5 build 5670 (2021-04-11)

Includes cosmetic changes to Tunnelblick's credits and copyright notice.
Updates translations.

3.8.5beta06 build 5660 (2021-04-02) (SECURITY UPDATE)

Updates OpenSSL to 1.1.1k from 1.1.1j. See OpenSSL Security Advisory 25 March 2021.
Updates the list of 'safe' OpenVPN options.
Updates translations.
Fixes a problem that caused settings to be changed when disconnecting.
Fixes a problem that caused the wrong log to be displayed.

3.8.5beta05 build 5650 (2021-02-25)

Replaces OpenVPN 2.5.0 with 2.5.1. See Overview of changes in 2.5.1.
Runs OpenVPN and Tunnelblick's system extensions as a native programs on M1 and Intel-64 processors. The Tunnelblick application runs as a native program on Intel-64 processors, and runs under Rosetta 2 on M1 processors.
Updates translations.
Fixes a problem that caused tabs or buttons in the 'VPN Details' window to be only partially visible.

3.8.5beta04 build 5640 (2021-02-19)

Requires macOS 10.10 or higher.
Replaces OpenSSL 1.1.1i with 1.1.1j. See OpenSSL Security Advisory 16 February 2021.
Tunnelblick's system extensions run as a native programs on M1 and Intel-64 processors. The Tunnelblick application and OpenVPN run as a native program on Intel-64 processors, and run under Rosetta 2 on M1 processors.
Updates translations.
Fixes a problem that caused the Tunnelblick application to crash.
Fixes bad links in warnings.

3.8.5beta03 build 5630 (2021-02-11)

Tunnelblick and OpenVPN are now universal binaries built with Xcode 12.4 and run as native programs on both Intel-64 and M1 processors.
Includes a new 'Install system extensions' button on the Utilities panel which facilitates installing system extensions on macOS Big Sur if they are required.
Disconnects the VPN automatically and complains if a certificate has expired or is not yet valid.
Updates translations.
Fixes a problem on macOS Big Sur that hid the 'Advanced' button.
Fixes a problem that could cause Tunnelblick to hang.
Fixes a problem that caused authentication failures if a passphrase was visible.

3.8.5beta02 build 5620 (2020-12-14) (SECURITY UPDATE)

Updates OpenSSL to version 1.1.1i from 1.1.1h. (See OpenSSL Security Advisory 08 December 2020.)
Updates OpenVPN to version 2.4.10 from 2.4.9.
Updates LZ4 to version 1.93 from 1.92.
Updates PKCS11 to version 1.27 from 1.26.0.
Includes a button to uninstall Tunnelblick. (On the 'Utilities' panel of the 'VPN Details' window.)
Skips warning about disabling tun or tap in Big Sur if tun and tap are set to load automatically.
Skips warning when the user cancels an uninstall.
Fixes a problem that hid some "'do not warn about this again' checkboxes.
Fixes several problems that caused hangs or crashes.

3.8.5beta01 build 5610 (2020-11-09)

(No changes from 3.8.4.)

3.8.4b build 5602 (2021-04-02) (SECURITY UPDATE)

Updates OpenSSL to 1.1.1k from 1.1.1i. See OpenSSL Security Advisory 25 March 2021.

3.8.4a build 5601 (2020-12-14) (SECURITY UPDATE)

Updates OpenSSL to version 1.1.1i from 1.1.1h. (See OpenSSL Security Advisory 08 December 2020.)

3.8.4 build 5600 (2020-11-09)

Updates localization.
Fixes a problem showing information about loading Tunnelblick system extensions.

3.8.4beta07 build 5590 (2020-11-01)

Includes OpenVPN 2.5.0, replacing 2.5 Release Candidate 3.
Notes when a kext failed to load because the user did not give macOS permission to load it.
Checks ownership and permissions of /Library/LaunchDaemons.
Adds information to the diagnostic info about Tunnelblick kexts that were enabled or disabled by the user.
Includes updated translations.
Fixes a problem that caused incorrect ownership of a Tunnelblick folder.
Fixes a problem when installing configurations.

3.8.4beta06 build 5580 (2020-10-19)

Includes OpenVPN 2.5 Release Candidate 3, replacing OpenVPN Release Candidate 2.
Disables checking for IP address changes after five successful connections to a VPN. (Checking is easily re-enabled.)
Includes updated translations.

3.8.4beta05 build 5570 (2020-09-23) (SECURITY UPDATE)

Includes OpenVPN 2.5 Release Candidate 1, replacing OpenVPN 2.5 Beta 4.
Includes OpenSSL 1.1.1h, replacing 1.1.1g.
Includes a new 'Warnings' menu to display warnings without disturbing your workflow. The presence of warnings is indicated by a caution symbol on the Tunnelblick icon in the menu bar.
Includes updated translations.

3.8.4beta04 build 5560 (2020-09-12) (SECURITY UPDATE)

Includes OpenVPN 2.5 Beta 4, replacing OpenVPN 2.5 Beta 3.
Removes the OpenSSL 1.0.2 version of OpenVPN 2.5. See OpenVPN and OpenSSL Versions Included in Tunnelblick.
Includes updated translations.

3.8.4beta03 build 5550 (2020-09-03)

Replaces OpenVPN 2.5_beta1 with 2.5_beta3 (see Overview of changes in 2.5).
Removes the OpenSSL 1.0.2 version of OpenVPN 2.5. OpenSSL 1.0.2 is included only in OpenVPN 2.3 and 2.4.
Removes pkcs#11 support from OpenVPN 2.3. pkcs#11 support is included only in OpenVPN 2.4 and 2.5 using OpenSSL 1.1.
Updates pkcs11-helper to version 1.26 from 1.22.

3.8.4beta02 build 5540 (2020-08-18)

Includes OpenVPN 2.5_beta1 (see Overview of changes in 2.5).
Updates handling of system extensions (kexts) on macOS Big Sur.
Updates information about system extensions on macOS Big Sur.
Attempts to load required system extensions on macOS Big Sur if SIP is disabled.
Warns about the deprecated --inetd OpenVPN option.
Includes updated translations.
Fixes a problem that rejected the --secret OpenVPN option.

3.8.4beta01 build 5530 (2020-07-24)

Updates lz4 to version 1.9.2 from version 1.8.1.2.
Updates translations.

3.8.3a build 5521 (2020-09-07) (SECURITY UPDATE)

Includes OpenVPN 2.5 Beta 3, replacing OpenVPN 2.5 git master cc76e177 dated 2020-05-19.

3.8.3 build 5520 (2020-07-24)

(No changes from Tunnelblick 3.8.3beta03.)

3.8.3beta03 build 5510 (2020-07-16)

Fixes problems on macOS Big Sur.
Warns about problems loading system extensions when Tunnelblick is launched instead of when connecting a configuration.
Updates list of deprecated and removed OpenVPN options.
Doesn't log 'A system configuration change was ignored' messages.
Warns about scripts that do not terminate.
Lists forced preferences in the diagnostic info.
Includes updated translations and credits.
Fixes a problem that caused 'Icon Sets' folders to be shown as configuration folders in the 'VPN Details' window.
Fixes a problem detecting failures when creating temporary directories.
Fixes a problem causing multiple identical warning windows to appear.
Fixes misleading popup help message for the 'Keep connected' checkbox.
Fixes a problem detecting script failures.
Fixes a problem that caused spurious 'DNS is not being routed through the VPN' warnings.
Fixes a problem that caused configurations to be secured repeatedly.

3.8.3beta02 build 5500 (2020-05-22) (SECURITY UPDATE)

Adds the ability to create, delete, and rename folders containing configurations, and to copy and move folders and configurations into and out of folders using drag and drop.
Replaces OpenVPN 2.4.8 with 2.4.9. See Changes in OpenVPN v2.4.
Replaces OpenSSL 1.1.1e with 1.1.g. See OpenSSL 1.1.1 Release Notes.
Updates OpenVPN git master version to commit cc76e177 dated 2020-05-19.
Uses a secured copy of user's scripts.
Simplifies use of the 'Rename Configuration' action item.
Shows most warnings only once per Tunnelblick launch.
Modernizes the splash screen.
Adds the 'TunnelblickConfigurationName' variable (containing the configuration name) to the Environment for Tunnelblick scripts.
Allows scripts to set or modify the password before it is sent to OpenVPN.
Warns about tun and tap problems in a future version of macOS.
Warns that the --secret option is deprecated in OpenVPN 2.4 and will be removed a future version.
Includes updated translations.
Fixes a problem that did not allow the use of OpenVPN 2.4 with OpenVPN configurations that include --max-routes.
Fixes a problem that did not abandon a connection attempt when the user cancelled the username/password dialog.
Fixes a problem that mistakenly considered 'utun' as a valid parameter of OpenVPN's --dev-type option.
Fixes a problem that caused the Advanced button to not be disabled when the 'disableAdvancedButton' preference was true.
Fixes a problem that failed to show an alert that the requested version of OpenVPN was not being used.
Fixes a problem that warned too strongly about options that were ignored by OpenVPN.
Fixes a problem that caused the informative tooltips to be editable.
Fixes losing a saved username when renaming or duplicating a configuration if the password was not saved.
Fixes losing preferences (settings) when renaming or duplicating a configuration.

3.8.3beta01 build 5490 (2020-03-22)

Clarifies pop-up help for 'Connect when computer starts'.
Includes updated translations.

3.8.2a build 5481 (2020-05-22) (SECURITY UPDATE)

Replaces OpenVPN 2.4.8 with 2.4.9. See Changes in OpenVPN v2.4.

3.8.2 build 5480 (2020-03-22) (SECURITY UPDATE)

(No changes from Tunnelblick 3.8.2beta07.)

3.8.2beta07 build 5470 (2020-03-17) (SECURITY UPDATE)

Includes OpenSSL 1.1.1e instead of 1.1.1d. See OpenSSL Security Advisory 6 December 2019 and OpenSSL 1.1.1 Series Release Notes.
Includes a partial Swahili (Tanzania) translation and updates the Finnish translation.

3.8.2beta06 build 5460 (2020-03-12)

Built on macOS 10.11.6 with Xcode 7.3.1.
Fixes problems causing fatal errors.

3.8.2beta05 build 5450 (2020-02-29)

Includes OpenVPN 2.5 git master 32723d2 dated 2020-02-20.
Built on macOS 10.14.6 with Xcode 10.3.
Ignores invisible files and folders when updating configurations.
Includes better logging when updating configurations.
Fixes problems using non-Tunnelblick OpenVPN binaries.

3.8.2beta04 build 5440 (2020-01-30)

Allows the use of custom OpenVPN binaries.
Includes better logging of problems when updating configurations.
Includes updated localization.
Fixes two problems updating configurations using the 'new' method.
Fixes a problem updating or installing configurations that include localization.
Fixes a problem when resetting disabled warnings.
Fixes a cosmetic problem when deleting a configuration enclosed in a folder.
Fixes two misleading log entries.

3.8.2beta03 build 5430 (2019-12-20) (SECURITY UPDATE)

Allows standard users to install and update "restricted" configurations if allowed by a computer administrator.
Includes a new, simpler method of updating configurations.
Optionally requires authentication to connect, using TouchID if it is available.
Defaults to use OpenSSL 1.1.1 and replaces OpenSSL 1.0.2t with 1.0.2u. (OpenSSL support for 1.0.2 ends 2019-12-31.)
Creates an installer package for tuntap which includes Tunnelblick's notarized kexts.
Includes updated translations.
Corrects a statement about the removal of the comp-lzo OpenVPN option.
Fixes a problem exporting a Tunnelblick setup.

3.8.2beta02 build 5420 (2019-11-01)

Includes OpenVPN 2.4.8 (changes), OpenVPN 2.5 at git master commit 57623b4 dated 2019-10-28, and OpenVPN 2.3.18.
No longer warns about out-of-date builds.
Includes updated localization and adds a partial Thai translation.
Fixes a problem that briefly showed overlapping contents when switching panels of the 'VPN Details' window.

3.8.2beta01 build 5410 (2019-09-11) (SECURITY UPDATE)

(No changes.)

3.8.1 build 5400 (2019-09-11) (SECURITY UPDATE)

Includes OpenSSL 1.0.2t and 1.1.1d. See OpenSSL Security Advisory 10 September 2019.
Includes updated translations.
Fixes misspelling of founder Angelo Laub's name in the credits (!).

3.8.1beta02 build 5390 (2019-09-05)

Replaces OpenVPN git master 2.5 ccb636c withd42f070 dated 2019-08-188.
Warns about two or more simultaneous connections with at least one set to use 'Set nameserver'.
Includes updated translations.
Fixes Issue 564 Catastrophic error: Could not create a temporary directory.

3.8.1beta01 build 5380 (2019-07-19)

(No changes)

3.8.0 build 5370 (2019-07-19)

Includes the macOS build number when displaying the macOS version.
Includes updated translations.

3.8.0beta04 build 5360 (2019-07-06)

Has more readable text in dark mode.
Has better alignment of items in 'VPN Details' window.
Updates the list of public DNS servers known to Tunnelblick.
Includes updated translations.
Includes clarified and expanded log entries during installation.
Fixes a problem recognizing IPv6 DNS servers.
Fixes a problem that sometimes expanded collapsed folders when a configuration is renamed.
Fixes a problem resetting interfaces on an unexpected disconnect.
Fixes a problem that caused Tunnelblick installations to fail.

3.8.0beta03 build 5350 (2019-06-27)

Adds AppleScript commands to set username/password/passphrase and delete credentials for a configuration.
Includes extra logging of Tunnelblick's standard 'up' and 'down' scripts when the 'DB-UP' preference is set.
Includes the time of day in log entries for Tunnelblick's standard 'up' and 'down' scripts.
Clarifies the wording of an alert about DNS addresses.
Fixes several problems that caused network errors after waking, restarting, or shutting down the computer while a VPN was active.
Fixes a problem that sometimes caused Tunnelblick to use excessive CPU time when waking from sleep with no Internet access.
Fixes a problem on macOS Catalina that caused a 'System Requirements Not Met' warning that the /tmp folder was not secure.
Includes updated translations and credits.

3.8.0beta02 build 5340 (2019-06-03) (SECURITY UPDATE)

Fixes a failure to restore DNS settings after shutting down or restarting the computer while a VPN was connected.
Warns if configurations set to connect when the system starts are not active.
Includes entries from a new "Quit Log" in the Diagnostic Info.
Uses a modern divider on the Configurations panel.
Includes new translations.
Fixes a minor memory leak.
Fixes several problems with incorrect entries in the Tunnelblick log.
Fixes a problem displaying text in alert windows in dark mode.
Fixes problems with misalignment of window elements.
Fixes a problem that caused incorrect entries in the Console Log.
Fixes a problem displaying the complete Tunnelblick version in the splash screen.
Fixes a problem that included entries from "Google Software Update Installer" in the Diagnostic Info.

3.8.0beta01 build 5330 (2019-05-22) (SECURITY UPDATE)

Includes a button to reveal or hide a password or passphrase as it is entered.
By default, sets up DNS after routes have been set up.
If available, uses OpenVPN-supplied DNS instead of DHCP-supplied DNS on tap connections.

Older Versions of Tunnelblick

Old Release Notes has release notes for older versions of Tunnelblick.

Uninstaller

The Tunnelblick Uninstaller has been replaced by an "Uninstall" button on the "Utilities" panel of Tunnelblick's "VPN Details" window as of Tunnelblick 3.8.5beta02.

1.13 build 5330 (2019-05-22) (SECURITY UPDATE)

Tunnelblick Uninstaller is notarized: Apple verifies that it does not contain malware.

1.12 build 5090 (2018-06-26)

Fixes a problem when the user doesn't respond to the uninstall success/failure dialog within a few minutes.
Fixes a problem that caused the uninstaller to bounce in the Dock.

1.11 build 5051 (2018-05-08)

Fixes a problem that caused the uninstaller to fail on Hackintoshes and Macs with corrupted NVRAM.

1.10 build 5050 (2018-04-26)

Tunnelblick Uninstaller is now a 64-bit, Intel-only application for macOS 10.7.5 and higher only.
Displays detailed log if user doesn't respond to success/failure dialog.
Includes information about Tunnelblick login items and Tunnelblick items in the Dock.
Logs activity to a temporary file to help debugging if the uninstaller crashes. (The file is deleted at the end of the uninstall process.)
Fixes a problem that caused 'The command exited with a non-zero status' errors.
Fixes a problem clearing users' user defaults cache.
Fixes problems deleting files and folders when they have been locked.
Fixes a problem detecting login items from old versions of Tunnelblick.
Fixes several other potential problems.

Version 1.9 build 4990 (2018-01-31)

Does a slow 'secure erase' only on non-SSD drives (SSDs do not implement 'secure erase').
Clarifies wording in some dialogs.
Fixes a problem if an uninstall was followed by an install without restarting the computer.
Fixes a bug that caused the success or failure dialog window to be replaced with an Applescript error window if it was not dismissed within two minutes of the completion of the uninstall.

Version 1.8 build 4405 (2015-09-30)

Deletes Tunnelblick from all users’ Trash.
Includes clearer error messages concerning Keychain items, particularly on OS X 10.4.
Corrects the program name displayed by OS X when asking for the users’ username/password.

Version 1.7 (2015-06-20)

Uninstalls even if the Tunnelblick application has been damaged or does not exist (for example, it has been put in the Trash).
Unloads Tunnelblick daemons if they are loaded.
Removes OpenVPN and tunnelblickd crash logs.
Removes tunnelblickd logs in rebranded versions of Tunnelblick.
Removes the temporary authorization icon.
Includes better error messages.
Fixes a problem that caused the tunnelblickd daemon to be unloaded even when the uninstaller is only being tested.
Fixes a problem that displayed a 'Details' button (which was ignored) when certain error conditions arose.
Fixes a problem that sometimes caused an error when removing part of the Tunnelblick application.

Version 1.6 (2015-03-29)

Fixes problems when run on a PowerPC G3 processor.

Version 1.5 (2015-01-14)

Removes the new entry in /Library/LaunchDaemons made by Tunnelblick 3.4beta05 (build 4204) and higher

Version 1.4 (2014-09-10)

Removes the new entries in /Library/LaunchDaemons made by Tunnelblick 3.4beta37 (build 2957) and higher

Version 1.3 (2014-07-10)

Removes the new entry in ~/Library/LaunchAgents made by Tunnelblick 3.4beta32 and higher

Version 1.2 (2014-02-11)

Fixes a problem causing "application is damaged" warnings on Mavericks
Fixes a problem with text being repeated in the opening window
Fixes a problem with the opening window not appearing until the Uninstaller icon in the Dock is clicked

Version 1.1 (2014-01-08)

Removes preferences cache if it is present
Warns user if Tunnelblick or OpenVPN is running
Ready for localization

Version 1.0 (2013-03-28)