Ed,
I'd try this freeware package:
http://www.cosy.sbg.ac.at/~andi/
It works great and it delivers better entropy than the typical entropy seed
file needed without it. I've built a couple of packages ready for install,
which can be downloaded at:
ftp://ftp.zama6.net/pub/support/pkg/ANDIrand-0.6-sparc.tar.gz
ftp://ftp.zama6.net/pub/support/pkg/ANDIrand-0.6-intel.tar.gz
Brad McNamara
ZAMA Networks, Inc.
Ed Voncken wrote:
> Hello,
>
> I'm currently working on the implementation of OpenSSL on our Solaris
> servers.
>
> During tests on Solaris 8, I've encountered a "Not enough entropy in
> RNG" error. We came to the conclusion that we needed a /dev/random
> device or an entropy gathering device to supply a limitless source of
> random data.
>
> Three alternatives appear to be available:
> - SUNWski patch from Sun
> - EGD
> - PRNGD
>
> My inquiry with Sun has resulted in confusion; they were under the
> impression that SUNWski was a standard part of Solaris 8, but they could
> not find it themselves. Therefore I assume that SUNWski is not available
> and supported on Sun Solaris 8.
>
> After comparing EGD and PRNGD, I decided to implement PRNGD since it
> appears to be a non-blocking, and unlimited source of random data.
>
> My question is:
>
> - How do I configure OpenSSL for PRNGD (either UNIX or TCP socket)
>
> I could not find a ./Configure option to specify an interface to PRNGD;
> I assume that it is a compile-time issue.
>
> Other thoughts are also welcome.
>
> --
> Greetings,
> Ed Voncken
> Consultant UNIX
>
> ** Not speaking on behalf of current or any previous employer **
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
