A modest proposal:
Since
"Failed to generate temporary 512 bit RSA private key"
is such an FAQ on this list (even though it's in the FAQ ;-),
perhaps some defensive coding might be order that detects possible
errors earlier and so gives a more informative error message?
An easy one would to die with an error if there are no random
sources defined in the conf file . This for example can happen with
the mod_perl test suite's default httpd.conf
Harder would be to cause an error like the the above to be logged as
"Failed to generate temporary 512 bit RSA private key:
insufficient entropy available from the random source(s)
"
or similar?
[ There are probably good reasons why this cant be done; if so, I'll
just shut up and go away :-) ]
Dave M.
* Dave Mitchell, Operations Manager,
* Fretwell-Downing Facilities Ltd, UK. [EMAIL PROTECTED]
* Tel: +44 114 281 6113. The usual disclaimers....
*
* Standards (n). Battle insignia or tribal totems
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
