Re: entropy gathering and PRNG

Thu, 06 Jul 2000 07:53:32 -0700 

Thanks - that made a big difference.  However, I noticed that the /etc/entropy
file is not growing in size - it's still at 0 bytes even though the daemon has
been running for several hours.

It's entirely possible that I used the wrong procedure to create the
/etc/entropy file - all I did was create an empty text file.

What is the correct way to create a file as a socket?  If this is a stupid
question, I apologize for wasting everyone's time.

Lutz Jaenicke wrote:

> On Wed, Jul 05, 2000 at 04:47:43PM -0400, Diana Moreland wrote:
> > My version of the Linux kernel (2.0.33)  is a couple of  years old and I
> > do not have /dev/random or /dev/urandom on my system.  I've been
> > researching what to use instead and have become confused.
> >
> > I downloaded EGD, installed it and started the daemon, pointing it to
> > /etc/entropy.  When I point the SSLRandomSeed directive to /etc/entropy,
> > the httpd daemon hangs up trying to start.  Do I need to recompile
> > OpenSSL to include the RAND_egd function?  If so,  how do I make OpenSSL
> > see it?
>
> RAND_egd() is part of OpenSSL since 0.9.5.
>
> The SSLRandomSeed function must especially know that the corresponding
> source is of EGD type:
> SSLRandomSeed startup egd:/etc/entropy
>
> In any case, you can use egc.pl (part of the EGD package) to check the
> proper operation of EGD:
> egc.pl /etc/entropy get         (read number of bits available)
> egc.pl /etc/entropy read 255    (retrieve 255bytes of random data)
> ... see egc.pl for the description.
>
> Best regards,
>         Lutz
> --
> Lutz Jaenicke                             [EMAIL PROTECTED]
> BTU Cottbus               http://www.aet.TU-Cottbus.DE/personen/jaenicke/
> Lehrstuhl Allgemeine Elektrotechnik                  Tel. +49 355 69-4129
> Universitaetsplatz 3-4, D-03044 Cottbus              Fax. +49 355 69-4153
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> User Support Mailing List                      [EMAIL PROTECTED]
> Automated List Manager                            [EMAIL PROTECTED]

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to