On Tue, Nov 09, 1999, Robert Flemming wrote:
> [...]
> routines:RSA_padding_check_PKCS1_type_2:block type is not 02
> [error] OpenSSL: error:04065072:rsa
> routines:RSA_EAY_PRIVATE_DECRYPT:padding check failed
> [error] OpenSSL: error:1408F071:SSL routines:SSL3_GET_RECORD:bad mac
> decode
>
> If anyone has any thoughts or tips on the matter I'd greatly appreciate
> them. I've not had this problem before, but I've never used this
> combination of versions either. I'm I just missing something stupid or
> is a genuine problem?
In 90% of all cases where one receives this error this was caused by a cached
old certificate/key information in the browser. And one can get rid of the
error by just removing all cached cert/keys in the browsers security dialogs.
Typical error is that the browser remembers a certificate, one recreates one
(usually especially the Snake Oil cert) and then one retries it. Then although
the cert's DN is still the same, the ingredients are not. Then this causes
exactly the above error. So check your browsers security dialog for
cached/remembered certs of your server.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
