John Saylor wrote:
>
> Hi
>
> I've got it installed and working pretty well, except for one little
> thing [or else why would I be writing this email?]. I can generate
> certs and set up apache for SSL, but when I try and connect from
> netscape using a browser that has downloaded the CA cert I get
> authentication failures
>
> [24/Feb/1999 21:32:46] [error] SSL handshake failed (OpenSSL library error
> follows)
> [24/Feb/1999 21:32:46] [error] OpenSSL: error:0407106B:rsa
> routines:RSA_padding_check_PKCS1_type_2:block type is not 02
> [24/Feb/1999 21:32:46] [error] OpenSSL: error:04065072:rsa
> routines:RSA_EAY_PRIVATE_DECRYPT:padding check failed
> [24/Feb/1999 21:32:46] [error] OpenSSL: error:1408F071:SSL
> routines:SSL3_GET_RECORD:bad mac decode
>
> I'm running OpenSSL 0.9.1c
> I added basicContstraints to CA cert with ca-fix
> RedHat 5.2 [2.0.36 kernel]
> Apache 1.3.3
> Dell 386 [OK- laugh if you must, but someday you may find yourself
> slow and underpowered too ...]
>
> I looked in the mailing list archive and saw some stuff about RSA
> padding, but nothing that matched my problem. Any help or pointers
> appreciated.
IIRC, this is a bug in 0.9.1c - try the latest snapshot instead.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
- Indira Gandhi
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
