We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Getting "ssl_error_bad_mac_read" when trying to visit one specific site

  • 7 replies
  • 3 have this problem
  • 1 view
  • Last reply by cor-el

more options

I have only a handful of machines in my organization that when they attempt to visit a specific site on our network using Firefox only no matter what version they are greeted with the error message

ssl_error_bad_mac_read (screenshot attached)

I have tried the following

-logging in to same machine with diff user -uninstalling FF and blowing out all profiles then reinstalling -verifying all settings including proxy; matched up with working machine using identical settings -machine on same subnet with identical config works fine -used FF portable via USB on machine and getting same error -verifying host file is correct -running FF in safe mode

I have been banging my head against this issue for a day now and cant figure out why only a few machines on our network have this problem. Any advice? Thanks in advance!

I have only a handful of machines in my organization that when they attempt to visit a specific site on our network using Firefox only no matter what version they are greeted with the error message ssl_error_bad_mac_read (screenshot attached) I have tried the following -logging in to same machine with diff user -uninstalling FF and blowing out all profiles then reinstalling -verifying all settings including proxy; matched up with working machine using identical settings -machine on same subnet with identical config works fine -used FF portable via USB on machine and getting same error -verifying host file is correct -running FF in safe mode I have been banging my head against this issue for a day now and cant figure out why only a few machines on our network have this problem. Any advice? Thanks in advance!

Modified by krdell

All Replies (7)

more options

If you can provide the website name

Try this,

  • Firefox > Tools > Options
    • Advanced > Certificates
    • When a server requests my personal certificate: > Choose "Ask me every time"

Check this thread - https://support.mozilla.org/en-US/questions/982298

Modified by iamjayakumars

more options

Thanks for reply but it's already set to ask every time. website name is bionic.brynmawr.edu

more options
more options

It works fine with everyone except for a few machines as ive said. It has the same certs as every other machine on campus

more options
more options

I am not sure that you read my original post. we've completely removed firefox and all profiles from one of the problem machines and still had the same problem.

more options

What SSL/TLS cipher(s) did previous Firefox versions use?

Are you using the latest updates for all network software like proxy servers?


You can modify the security.tls.version.min and security.tls.version.max prefs to set which TLS versions are enabled.

You may need to close and restart Firefox after changing these prefs.

security.tls.version.min = 0 (1 will disable SSL3 and only enable TLS)
security.tls.version.max = 2 (0 will disable TLS 1.0 and higher, leaving only SSL3 enabled)