Re: openssl 0.9.6

Wed, 29 Nov 2000 19:09:41 -0800 

You might also want to use the -rand flag and provide a path to the
entropy pool.  You can use either egd or prngd - prngd won't block, and
it provides more than enough entropy - similar to the /dev/urandom
device.

You will find prngd here:
http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls/prngd.html
And a link to egd from there.

If I remember correctly, you still have to tell OpenSSL where to find
its entropy unless you have /dev/urandom or /dev/random.  Even if it is
only done in the openssl.cfg file.

Good luck.

L

Doug Grove wrote:
> 
> I note that it says PRNG not seeded.  Is this the problem.  I need to run
> PRNG on my HPUX box because EGD couldn't generate randomness fast enough.
> 
> -----Original Message-----
> From: Zandi Patrick S TSgt AFRL/IFOSS <[EMAIL PROTECTED]>
> To: '[EMAIL PROTECTED]' <[EMAIL PROTECTED]>
> Date: Wednesday, November 29, 2000 4:18 PM
> Subject: openssl 0.9.6
> 
> >Hello,
> >I installed EGD 0.8.0
> >I installed openssl 0.9.6 with egd running..
> >typed
> >./openssl req -newkey rsa:1024 -keyout key.pem -out req.pem -newhdr
> >recieve the following error.
> >Using configuration from /usr/local/ssl/openssl.cnf
> >unable to load 'random state'
> >This means that the random number generator has not been seeded
> >with much random data.
> >Generating a 1024 bit RSA private key
> >6882:error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not
> >seeded:md_rand.c:474:You need to read the OpenSSL FAQ,
> >http://www.openssl.org/support/faq.html
> >6882:error:04069003:rsa routines:RSA_generate_key:BN lib:rsa_gen.c:182:
> >---
> >I AM RUNNING EGD !  Why is it still Messing up..
> >
> >Solaris 2.6..
> >
> >Pat zandi
> >______________________________________________________________________
> >OpenSSL Project                                 http://www.openssl.org
> >User Support Mailing List                    [EMAIL PROTECTED]
> >Automated List Manager                           [EMAIL PROTECTED]
> >
> 
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to