From owner-freebsd-questions@FreeBSD.ORG Sun Oct 8 16:30:24 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9C18D16A416 for ; Sun, 8 Oct 2006 16:30:24 +0000 (UTC) (envelope-from girishvenkatachalam@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.179]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1124643D46 for ; Sun, 8 Oct 2006 16:30:23 +0000 (GMT) (envelope-from girishvenkatachalam@gmail.com) Received: by py-out-1112.google.com with SMTP id o67so1865932pye for ; Sun, 08 Oct 2006 09:30:23 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:date:from:to:subject:message-id:reply-to:mime-version:content-type:content-disposition:user-agent; b=GM8yrgRYiMRYXuuo+Ci8xelo0obzludtqwNdphZdTP+hTZgzUdt+bwe8F+dQYJPvWFBJJglSeQaSedChiC3hHKcACfl4hvP8vSVcM72lGsrmeGFI/5df5hFWKwB+SN9hBUY3WNvF9+aI5NyFrxEZDLRXr9fHCDvXuCjpyPQOgX4= Received: by 10.35.66.12 with SMTP id t12mr10807034pyk; Sun, 08 Oct 2006 09:30:23 -0700 (PDT) Received: from lakshmi.susmita.org ( [59.92.57.138]) by mx.google.com with ESMTP id v50sm2568555pyv.2006.10.08.09.30.20; Sun, 08 Oct 2006 09:30:22 -0700 (PDT) Received: by lakshmi.susmita.org (Postfix, from userid 1000) id 8857923A96B; Sun, 8 Oct 2006 22:00:14 +0530 (IST) Date: Sun, 8 Oct 2006 22:00:14 +0530 From: Girish Venkatachalam To: freebsd-questions@freebsd.org Message-ID: <20061008163014.GA5712@lakshmi.susmita.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2i Subject: FreeBSD OpenSSL broken X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: girishvenkatachalam@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Oct 2006 16:30:24 -0000 Hi, I have been seeing scp xfers failing mysteriously with a "Corrupted MAC on input" error. This occurred more or less sporadically but for huge files it was sure to occur. I suspected the ethernet card and got it changed. Next, I suspected RAM since I used to get failed compiles saying "internal compiler error" and sefault. This had nothing to do with the other problems since if I issue compile again it used to go thro'. And the md5 and sha1 commands never worked. They always used to give corrupted results. Then I just gave up and moved on. I tried installing gentoo on that machine and did a memtest and it went fine. Anyway coming to the point, I am running 6.0 FreeBSD. I have come across the following cases. a) A person in Sweden had trouble with HTTPS and I solved it by reinstalling OpenSSL (check the archives, I think it was more than two months ago) b) Recently two persons had severe trouble with OpenSSH At last I tried the same medicine I have been prescribing to others and with God's grace :-) , my MD5 and SHA1 started matching... I have other machines in LAN running OpenBSD and Debian. I try matching the checksums with those boxes. And the only common factor and culprit is ... yes, OpenSSL. I urge all of you to make life simpler with this. # cd /usr/ports/security/openssl #make deinstall (it may fail, no problem :-) #make reinstall Enjoy guys! :-) I might fix the real problem if I get time. Or one of u can too. What makes me wonder is how come this problem has gone unnoticed for so long... regards, Girish