RSA warnings & errors in 9.8.4

Jay Ford jay-ford at
Fri Jan 4 17:44:07 UTC 2013

I just upgraded BIND on a Linux-based server from 9.8.3-P3 to 9.8.4.

I started getting a bunch of "RSA_verify" errors, as has been discussed on 
this list.  Is there a 9.8 release which quells those messages, or is hacking
the source post-download still the recommended fix?

Also, I got a spurt of log messages like:

    general: info: error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01:rsa_pk1.c:100:
    general: info: error:04067072:rsa routines:RSA_EAY_PUBLIC_DECRYPT:padding check failed:fips_rsa_eay.c:748:

Anybody know what that's about?

Jay Ford, Network Engineering Group, Information Technology Services
University of Iowa, Iowa City, IA 52242
email: jay-ford at, phone: 319-335-5555, fax: 319-335-2951

More information about the bind-users mailing list