Re: Problem with "Failed to generate temporary 512 bit RSAprivate key"

mjackson Mon, 31 Jul 2000 00:29:28 -0700
Simon,
     If you created the file $HOME/.rnd you don't need the entropy daemon,
you can disable it.  Change SSLRandomSeed back to the default settings
SSLRandomSeed startup builtin AND SSLRandomSeed connect builtin.
     I assume that when you created the .rnd file that you were successful
in generating your key and cert.  Now you just need to make sure your SSL
Directives are OK. ie make the change noted above.
     This is the easiest way I know to get this to work.  I haven't
bothered playing around with the entropy daemon, i am sure it works fine,
but this will get you going initally.

     Good luck..
Mark






Simon Dubey <[EMAIL PROTECTED]> on 07/31/2000 02:01:08 PM

Please respond to [EMAIL PROTECTED]

To:   [EMAIL PROTECTED]
cc:
Subject:  Re: Problem with "Failed to generate temporary 512 bit RSAprivate
      key"




OK I think some-one is going to have to speak to me like I am an idiot (I
certainly feel like one at the moment).

What I have done is (from the beginning) :
- installed openssl
- installed mod-ssl
- installed jserv
- installed apache

OK now I encountered above mentioned error, so I :
- got feedback from this NG
- installed egd (socket is /etc/entropy)
- started egd
- created $HOME/.rnd
- recreated test key and certificate
- change SSLRandomSeed in httpd.conf to SSLRandomSeed startup
file:/etc/entropy 512 and SSLRandomSeed connect file:/etc/entropy 512
- cursed alot

Please tell me what am I missing (not understanding) - do I need to
re-install
openssl, mod-ssl and apache after downloading egd ???? - do I need to curse
more ??? am I hitting the keybaord too hard ??

Regards Simon.

[EMAIL PROTECTED] wrote:

> Simon,
>
>      You need to create a file called $HOME/.rnd, open it with your
editor
> and enter in random key strokes.  Enter a few lines of random data.  This
> is the easiest way to get it to work.  Then run "openssl genrsa .../etc."
> to generate your key file pair.
> Cheers
> Mark Jackson
> [EMAIL PROTECTED]
>
> Simon Dubey <[EMAIL PROTECTED]> on 07/31/2000 01:00:47 PM
>
> Please respond to [EMAIL PROTECTED]
>
> To:   [EMAIL PROTECTED]
> cc:
> Subject:  Re: Problem with "Failed to generate temporary 512 bit RSA
>       private key"
>
> Mads Toftum wrote:
>
> > On Fri, Jul 28, 2000 at 06:01:33PM +0900, Simon Dubey wrote:
> > > Hello
> > >
> > > I have just installed mod-ssl on a solaris /sparc machine and get the
> > > above error.
> > >
> > > I have read the FAQ and tried to following what it is suggesting with
> > > $HOME/.rnd but do not quite follow it - well what I did, did not
work.
> > >
> > > I have also tried truerand as well but that did not work either.
> > >
> > Also check http://www.openssl.org/support/faq.html#6 and
> > http://www.openssl.org/docs/crypto/RAND_egd.html
> >
>
> OK - so I have installed egd - what do I have to do to get mod_ssl to use
> it
> ?
>
> I have it running with socket parameter of /etc/entropy and tried setting
> SSLRandomSeed to this value.
>
> Please help
>
> Simon.
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> User Support Mailing List                      [EMAIL PROTECTED]
> Automated List Manager                            [EMAIL PROTECTED]
>
> **********************************************************************
> Important Note
> This email (including any attachments) contains information which is
> confidential and may be subject to legal privilege.  If you are not
> the intended recipient you must not use, distribute or copy this
> email.  If you have received this email in error please notify the
> sender immediately and delete this email. Any views expressed in this
> email are not necessarily the views of AXA.   Thank you.
> **********************************************************************
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> User Support Mailing List                      [EMAIL PROTECTED]
> Automated List Manager                            [EMAIL PROTECTED]

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]






**********************************************************************
Important Note
This email (including any attachments) contains information which is 
confidential and may be subject to legal privilege.  If you are not 
the intended recipient you must not use, distribute or copy this 
email.  If you have received this email in error please notify the 
sender immediately and delete this email. Any views expressed in this 
email are not necessarily the views of AXA.   Thank you.
**********************************************************************
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
Re: Problem with "Failed to generate temporary 512 bit RSAprivate key"

Reply via email to
