Re: bad mac decode?

Sun, 19 Dec 1999 16:19:49 -0800 

> Erik Aronesty wrote:
> 
> More verify woes:,
> 
> On a Win32 build (after passing all of the tests!), I connect to
> this site (which works on all browsers), and it fails.  This never
> used to fail in the older (0.9.3) builds.  Am I missing something
> obvious?
> 
> D:\devl\openssl\out32>openssl.exe s_client -connect
> www.kohlpacking.com:443
> 
> CONNECTED(0000005C)
> depth=0 /C=US/ST=Ohio/L=Cincinnatti/O=Kohl Packing,
> Inc./CN=www.kohlpacking.com
> verify error:num=20:unable to get local issuer certificate
> verify return:1
> depth=0 /C=US/ST=Ohio/L=Cincinnatti/O=Kohl Packing,
> Inc./CN=www.kohlpacking.com
> verify error:num=21:unable to verify the first certificate
> verify return:1
> 661:error:1408F071:SSL routines:SSL3_GET_RECORD:bad mac
> decode:.\ssl\s3_pkt.c:34
> 1:
> 

Amusing, I'm originally from Cincinnati and it is misspelled in the
certificate. Anyway, www.badecommerce.com, which uses OpenSSL 0.9.4,
says:



Date: Sun Dec 19 15:56:56 1999

Site: www.kohlpacking.com
Port: 443

Resolves to:

 FQDN: 'www.kohlpacking.com'
 Address: '209.73.15.254'


209.73.15.254:
TCP connected (trying TLS)
 *** unable to establish SSL context (TLS) ***
 ***  ***

TCP connected (trying SSLv3)
 connected as 'SSLv3'

  Protection suite:

   Identifier:     RC4-SHA
   Authentication: RSA
   Key exchange:   RSA 
   Encryption:     RC4(128) 
   MAC:            SHA1 
 *** SAFE ***

  Site certificate:

   Subject: C=US, ST=Ohio, L=Cincinnatti, O=Kohl Packing, Inc.,
CN=www.kohlpacking.com
   Issuer: C=US, O=RSA Data Security, Inc., OU=Secure Server
Certification Authority
   Validity
    Not Before: Aug 25 00:00:00 1999 GMT
    Not After : Aug 24 23:59:59 2000 GMT
 *** Certificate verified ***

TCP connected (trying SSLv2)
 connected as 'SSLv2'

  Protection suite:

   Identifier:     DES-CBC3-MD5
   Authentication: RSA
   Key exchange:   RSA 
   Encryption:     3DES(168) 
   MAC:            MD5 
 *** SAFE ***

  Site certificate:

   Subject: C=US, ST=Ohio, L=Cincinnatti, O=Kohl Packing, Inc.,
CN=www.kohlpacking.com
   Issuer: C=US, O=RSA Data Security, Inc., OU=Secure Server
Certification Authority
   Validity
    Not Before: Aug 25 00:00:00 1999 GMT
    Not After : Aug 24 23:59:59 2000 GMT
 *** Certificate verified ***

S/MIME Cryptographic Signature

Reply via email to