Welcome to Inkbunny...
Allowed ratings
To view member-only content, create an account. ( Hide )
Inkbunny

Inkbunny SSL errors (ssl_error_bad_mac_read, etc)

We're currently trying to fix an odd SSL Certificate error that some users are experiencing.

Usually the issue will show up once out of every few pageloads and will show a message something like "ssl_error_bad_mac_read" or similar.

For anyone experiencing this, please clear your browser cache and cookies (just to give us the best starting point). Also clear "site preferences" if you have that option (that one is definitely in Firefox).

We renewed our site SSL certificate a few days ago so the issue could be related to that somehow. But so far all users reporting this issue say it started in the last 24 hours.

If you are getting the error please comment here with what error you see, what browser you are using and any clues you can figure out about what causes it to happen.

The really weird thing is it seems only to happen to very specific users, while others never have an issue.

We'll work it out eventually! Thanks for your help,

Inkbunny

UPDATE: Looks like the ssl_error_bad_mac_read issue is resolved, but waiting to see if the issue stays away for a while before announcing success!

UPDATE 2: The ssl_error_bad_mac_read issue is resolved. Please let us know if any other security certificate issues occur!
Viewed: 122 times
Added: 7 years, 7 months ago
Site News Item: yes
 
KimiKins
7 years, 7 months ago
I get a msg when I access the site through my motorolla droid 1 browser saying that the certificate is not from a trusted source. But when I get home, I don't get a message in firefox.
Rakai
7 years, 7 months ago
I have the same problem with my cruz which uses the android OS but Safari works fine with it
Issarlk
7 years, 7 months ago
Same problem here. RapidSSL, the company IB got the new certificate from isn't known in android phones.
Alfador
7 years, 7 months ago
I get the error. I'll try clearing my cache first, then the Inkbunny cookies, then do the history "forget" that clears site preferences (since I don't want to affect my browsing of other sites by clearing EVERYTHING), and see what works.
starling
7 years, 7 months ago
Cool, thanks. Let us know!
Alfador
7 years, 7 months ago
Error still happens with cleared cache. Next up: Inkbunny cookies.
Alfador
7 years, 7 months ago
Error still happens with cookies cleared. Time to finish with clearing EVERYTHING about Inkbunny from browser memory, relog in, and browse again later and see if I get the error.
Alfador
7 years, 7 months ago
And it still happens with EVERYTHING cleared. Browser: Firefox 3.6.14 (and it looks like there's a downloaded update I need to apply :P). OS: Windows XP Pro Service Pack 3. ISP: Speakeasy.
starling
7 years, 7 months ago
Ever tried packet logging with Wireshark or similar? If not I'll see if I can find some good instructions. We need to capture what's going on! :o
starling
7 years, 7 months ago
I just tried some changes with the firewall. Can you still make it happen?
Alfador
7 years, 7 months ago
Yup, it keeps happening. And I've never used Wireshark, but when I worked at Onvia I did do some basic packet sniffing on my own work machine with Fiddler in order to figure out the intricacies of some headers and POST data I needed to generate in a script to retrieve data. I never needed to figure out how to log it though; going in and manually poring over it was all I needed to fix my scripts.
starling
7 years, 7 months ago
Okay last change was disabling the firewall (to see if it was somehow involved). Wasn't that!

Now I have removed some silly SSL settings we don't need from Apache. Try again please and let me know!

Can you get Wireshark and install? Ill try to find packet logging instructions!
starling
7 years, 7 months ago
Okay this should be the place to start
http://www.wireshark.org/ to get it!

And then some clues on packet capture are here

http://www.wireshark.org/docs/wsug_html_chunked/ChUseC...

But you are a computer-head so you'll figure it out! If you can filter it to show packets to/from Inkbunny only (our IP is 62.212.67.22) that would be helpful (just reduces the capture size) but is not essential. I can filter it out on this end too!
starling
7 years, 7 months ago
Hey what happens if you try the uploader test? https://inkbunny.net/progresstest.php

You can use any file and it wont upload to your gallery. It's a good way to see if there are connection problems (which might cause SSL errors too if packets are being dropped). Does the uploader go super slow or behave oddly?
Alfador
7 years, 7 months ago
First off, sorry it took two more hours to respond to this--I'm not so much actively rooting out the error as returning and trying things whenever I idly browse Inkbunny during the day.

Second, I'll download Wireshark and set it up, but...

Third, I probably won't be able to do anything with it until I'm finished with WoW for the night--they'd probably detect the packet sniffing and think I was trying to cheat and ban my account. O_O
starling
7 years, 7 months ago
No problem! Just when you get a chance :P
starling
7 years, 7 months ago
It's looking fixed for many people who were getting the error. Let me know if it has gone away for you too! :P
Alfador
7 years, 7 months ago
Seems to be fixed now, and I didn't even get around to helping you packet sniff. T_T Ah well, at least it's fixed!! XD
WanderingSmoke
7 years, 7 months ago
I just got one a few minutes ago. I'm using a Ps3 right now. I will log out and clear my cash and cookies then see what happens.
WanderingSmoke
7 years, 7 months ago
Yep, same thing. "The security of the page cannot be confirmed... CA root certificate" blah blah.
starling
7 years, 7 months ago
Ooh that's actually a different error! Does it do that in all browsers you try (like IE, Chrome, etc) or just one?
WanderingSmoke
7 years, 7 months ago
My computer is actually dead now so the Ps3 is all I have. I can write down the info next time it happens if you want. Thank god I can still use IB and FA.
Shokuji
7 years, 7 months ago
Hm.. I tried all the things Starling said to try, but it still seems to continue. It's a bit less than before, but now I'm sometimes seeing broken thumbnails or pictures (till I reload). Chrome did just update, so maybe it's really it's own fault. I should probably just start using Firefox4 or something. =x
RobbyTiger
7 years, 7 months ago
i get an error saying that the security certificate is from an untrusted source using firefox and ubuntu linux
starling
7 years, 7 months ago
So strange. I use Ubuntu and Firefox too and it has no issue. The certificate is from RapidSSL/Geotrust which are pretty much among the top cert providers so all browsers would support them. More debugging to do!
MadManMarkAu
7 years, 7 months ago
Approx time: 2011/03/10 16:42:30 GMT+8

"An error occurred during a connection to inkbunny.net.

SSL peer reports incorrect Message Authentication Code.

(Error code: ssl_error_bad_mac_alert)"

URL visited: https://inkbunny.net/usergallery_process.php?user_id=12129

Certificate authentication: Authenticated with GeoTrust, Inc.

Web site: inkbunny.net
Owner: This web site does not supply ownership information.
Verified by: GeoTrust, Inc.

Visited 2,008 times today

Is this web site storing cookies on my computer: no
Have I saved any passwords for this web site: no

connection: AES-256

Certificate information:
Issued to:
CN: inkbunny.net
O: inkbunny.net
OU: GT46770628
SN: 00:E5:49
Issued by:
CN: RapidSSL CA
O: GeoTrust, Inc.
OU:
Validity:
Issued on: 2011/03/03
Expires on: 2012/04/05
Fingerprints:
SHA1: D4:F3:84:9E:1C:61:D1:44:93:7F:FC:0C:7D:8A:C1:B3:F9:89:C4:A9
MD5: D0:AA:71:03:58:EA:9B:97:43:F9:51:F7:FA:81:1C:64

Firefox version: 3.6.15 (Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; rv:1.9.2.15) Gecko/20110303 Firefox/3.6.15)
Addons:
AdBlock Plus 1.3.3
AVG Safe Search 10.0.0.1178
DOM Inspector 2.0.9
DownloadHelper 4.8.3
Free Download Manager Plugin 1.3.4
FurAffinity Extender 0.4.0.7
Java Console 6.0.24
LiveJournal Addons 9.1
Skype Extension 5.0.0.6906 (Known to cause security or stability issues)

Window 7 Professional 64-bit (installed latest updates earlier today)

Quick web search indicates it's possible it's a faulty build of the web server, or the web server is currently under attack. "The remote system has reported that it received a message with a bad Message Authentication Code from the local system. This may indicate that an attack on that server is underway."

I have a copy of the .cer if you need it. hope this helps :)
Rick
7 years, 7 months ago
A bit of a different error over here, happens if I try to use the latest stable build of Chrome for Mac. The error is: Error 202 (net::ERR_CERT_AUTHORITY_INVALID): Unknown error. The browser then doesn't allow any action at all. Interestingly enough, it was working yesterday on that same browser, and it's curently working on the latest developer release.
starling
7 years, 7 months ago
Wild! I have changed a few settings in the last few minutes. What happens if you try now? :O

Oh! And please try clearing cache first. Sometimes the browser holds on to cert data.
Rick
7 years, 7 months ago
I tried to clear the cache before and it still didn't work, I'm sure. But it does work now, at least it does for me :)
New Comment:
Move reply box to top
Log in or create an account to comment.