[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: TLS renegotiating error persists on FreeBSD 8.0 updated.

To: or-talk@xxxxxxxxxxxxx
Subject: Re: TLS renegotiating error persists on FreeBSD 8.0 updated.
From: Sebastian Hahn <mail@xxxxxxxxxxxxxxxxx>
Date: Fri, 8 Jan 2010 21:41:56 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Fri, 08 Jan 2010 15:42:01 -0500
In-reply-to: <171877.42674.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <171877.42674.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Jan 8, 2010, at 6:45 PM, Luis Maceira wrote:

The well-known TLS renegotiating error which the tor-0.2.1.21version was supposed to address persists on FreeBSD-8.0 updated asof today.The unstable version (0.2.2.6) same thing the errorpersists (On Linux and using tor-0.2.2.6 the error does not exist -Ihad this error only on Debian Testing and OpenSuSE)-.So,it seems to be a FreeBSD issue,more specifically after a recentFreeBSD update(when I no more could use tor).

Right. Unfortunately, it seems that FreeBSD patched openssl in such away that it is entirely impossible for any application to enablerenegotiation. See http://security.freebsd.org/advisories/FreeBSD-SA-09:15.ssl.ascfor details. This means that Tor will remain completely unusable onFreeBSD with those patches built in until they either change thepatch, or Tor updates it protocol. I believe that Tor will updateeventually, but this might take a substantial amount of time.


Sebastian
-----BEGIN PGP SIGNATURE-----

iEYEARECAAYFAktHmJQACgkQCADWu989zuZG5QCfSD6yWsYtpMQoOkCDnyyCcU6+
BLkAoINHXYD6FiK3gc4EV7C7xDtL2Af+
=oPtU
-----END PGP SIGNATURE-----
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: TLS renegotiating error persists on FreeBSD 8.0 updated.
  - From: grarpamp
- Re: TLS renegotiating error persists on FreeBSD 8.0 updated.
  - From: Roger Dingledine

References:
- TLS renegotiating error persists on FreeBSD 8.0 updated.
  - From: Luis Maceira

Prev by Author: Re: client bug in 0.2.2.7-alpha and a new bad exit: exoassist
Next by Author: Re: Tor Project infrastructure updates in response to security breach
Previous by thread: TLS renegotiating error persists on FreeBSD 8.0 updated.
Next by thread: Re: TLS renegotiating error persists on FreeBSD 8.0 updated.
Index(es):
- Author
- Thread