Strange days we live in, especially when our browsers trip of bugs in encryption libraries on the servers… David Smalley neatly pointed out how upgrading OpenSSL to at least 0.9.8h solves the cryptic Firefox 3 SSL errors we’ve been seeing on some our sites.
Secure Connection Failed An error occurred during a connection to xyz-abe.com SSL received an unexpected Change Cipher Spec record. (Error code: ssl_error_rx_unexpected_change_cipher)
Currently the package in question is still masked in gentoo, so upgrade as follows:
# echo ‘=dev-libs/openssl-0.9.8h-r1′ >> /etc/portage/package.unmask # emerge -av openssl
Once done, follow the instruction given by portage to rebuild the packages still using the old versions of OpenSSL.