TLS renegotiating error persists on FreeBSD 8.0 updated.

Scott Bennett bennett at cs.niu.edu
Fri Jan 8 20:51:32 UTC 2010


     On Fri, 8 Jan 2010 21:41:56 +0100 Sebastian Hahn <mail at sebastianhahn.net>
wrote:
>On Jan 8, 2010, at 6:45 PM, Luis Maceira wrote:
>
>> The well-known TLS renegotiating error which the tor-0.2.1.21 =20
>> version was supposed to address persists on FreeBSD-8.0 updated as =20
>> of today.The unstable version (0.2.2.6) same thing the error =20
>> persists (On Linux and using tor-0.2.2.6 the error does not exist -I =20=
>
>> had this error only on Debian Testing and OpenSuSE)-.
>> So,it seems to be a FreeBSD issue,more specifically after a recent =20
>> FreeBSD update(when I no more could use tor).

     Luis, did you build tor from the ports tree?
>
>Right. Unfortunately, it seems that FreeBSD patched openssl in such a =20=
>
>way that it is entirely impossible for any application to enable =20
>renegotiation. See =
>http://security.freebsd.org/advisories/FreeBSD-SA-09:15.ssl.asc=20
>  for details. This means that Tor will remain completely unusable on =20=
>
>FreeBSD with those patches built in until they either change the =20
>patch, or Tor updates it protocol. I believe that Tor will update =20
>eventually, but this might take a substantial amount of time.
>
     Is there some reason that following the directions provided here on
this list doesn't work any longer?  I'm running FreeBSD 7.2, but using
OpenSSL from the ports tree works fine, provided one can get that version
linked into the tor binary instead of the OpenSSL from the base system,
for which we discussed two or three methods here on the list.


                                  Scott Bennett, Comm. ASMELG, CFIAG
**********************************************************************
* Internet:       bennett at cs.niu.edu                              *
*--------------------------------------------------------------------*
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."                                               *
*    -- Gov. John Hancock, New York Journal, 28 January 1790         *
**********************************************************************
***********************************************************************
To unsubscribe, send an e-mail to majordomo at torproject.org with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/



More information about the tor-talk mailing list