1.> I'm wondering if it's possible to
make a digital cert that supports/uses SCG (Server Gated Cryptography), and if
so, how?
[Lee] I think you have to be a
big company, like MS or Netscape, and negotate a special deal with the
NSA.
4.> Finally, I notice a problem with
OpenSSL 0.9.6a; that is, when trying to generate an RSA cert, I get the
following:
C:\>openssl genrsa -des3 -rand
File1;File2;File3;File4;File5 2048 > Rob.key
Loading 'screen' into random state -
done
5510111 semi-random bytes loaded
Generating RSA private key, 2048
bit long modulus..+++...................+++
unable to write 'random
state'
e is 65537 (0x10001)
...apparently, the "unable to write 'random
state'" can't be a GOOD thing... *sigh*
[Lee] I get the same thing too, but only if I specify the "-rand
File" option. Goes away
if I leave it out. Course my random numbers are probably not so good
:(
