Re: Openssl errors on FreeBSD

On Sun, Nov 5, 2023 at 8:03 PM <iio7@tutanota.com> wrote:

> Hi,
>
> I have four machines in my office, 2 FreeBSD boxes, 1 OpenBSD box and 1
> Linux box. On my FreeBSD boxes I get openssl read errors on some different
> domains, such as:
>
> $ curl -O https://www.unixsheikh.com/includes/files/the-biggest-myths.pdf
>   % Total    % Received % Xferd  Average Speed   Time    Time     Time
> Current
>                                  Dload  Upload   Total   Spent    Left
> Speed
> 12  763k   12 98139    0     0   377k      0  0:00:02 --:--:--  0:00:02
> 378k
> curl: (56) OpenSSL SSL_read: OpenSSL/1.1.1t: error:1408F119:SSL
> routines:ssl3_get_record:decryption failed or bad record mac, errno 0
>
> I get the same with wget.
>
> I also have problems getting email and using SFTP:
>
> Email:
>
> ** IMAP error on mail.example.com: stream error
> ** IMAP connection broken
>
> SFTP:
>
> Status: Connecting to www.example. <http://www545.your-server.de>com...
> Status: Using username "foo".
> Command:        Pass: ****************
> Error:  FATAL ERROR: Incorrect MAC received on packet
> Error:  Could not connect to server
> Status: Waiting to retry...
>
> This is only a problem on the two FreeBSD boxes, not on the OpenBSD or the
> Linux box. All connected to the same network. The two FreeBSD boxes
> runs 13.2-RELEASE-p4.
>
> Is this a problem with openssl on FreeBSD or what am I looking at here?
> Kind regards
>
>
>
This has nothing to do with FreeBSD and everything to do with the openssl
library.
This error isn't present when I attempt to reproduce it here.
My version of openssl is:  OpenSSL 1.1.1t-freebsd  7 Feb 2023
What version are you attempting this with?

~Paul

-- 
__________________

:(){ :|:& };: