Oswaldo,
I'll confess that I took the lazy way out and used the pre-packaged
version he already had made and it worked fine for me. The $HOME/.rnd
file is associated with when you do the "make certificate" step, not the
web server error I originally wrote about. The problem is similar, but
not quite the same.
If you haven't done so already, you should change your httpd.conf with
the following lines uncommented:
SSLRandomSeed startup file:/dev/urandom 512
SSLRandomSeed connect file:/dev/urandom 512
Duane Gran
http://spinweb.net -- Servlet Hosting
> > I just wanted to give an update. I was able to solve this problem with
> > a free third party /dev/random and /dev/urandom implementation:
> >
> > http://www.cosy.sbg.ac.at/~andi/
> >
> > I hope this helps some others.
> >
>
> I tried to use the random.c, I compiled it but didnt attached:
> devfsadm: driver failed to attach: random
> Warning: Driver (random) successfully added to system but failed to attach
>
> It says something about creating a script so at startup it gets
> initialized:
> * The random pool can be initialized at system startup by
> * a script containing a line simmilar to:
> * dd if=$random_seed_file of=/dev/urandom
>
> which is this script ? a /etc/init.d/startup_random ?
> what's $random_seed_file ?
>
> I have read the FAQ and the docs but still have the same problem, I
> tried with apache 1.3.9 and apache 1.3.12 (with the corresponding
> openssl source, 0.9.4 and 0.9.5a) but for some reason I still cannot
> get it to work with ssl, it works fine without -DSSL,
>
> I posted this in the bug page in the modssl site .. I have just entering
> this list so I dont know the posting got here, but I'm posting it anyway:
>
> I read the FAQ and did the what it said there, created a .rnd under
> /usr/local/apache (the serverroot) and under /home/WWW (the document
> root), the one that make certificate filled is the one I copied to
> the other places ... I have compiled apache with and without other
> modules but the problem still persists ... I did a truss and this is
> what I got:
>
[snip]
>
> in the logfile:
> [Fri Aug 18 17:18:28 2000] [notice] Apache/1.3.12 (Unix) configured -- resuming
>normal operations
> [Fri Aug 18 17:22:43 2000] [error] mod_ssl: Init: Failed to generate temporary
>512 bit RSA private key
>
> I put debug and trace in the SSLLogLevel, but it gives no more info :-/
>
> apache runs well without -DSSL, of course ...
>
> this is my last configure:
> ./configure --add-module=src/modules/extra/mod_auth_msql.c \
> --prefix=/usr/local/apache --enable-shared=ssl --enable-module=ssl \
> --activate-module=src/modules/perl/libperl.a \
> --activate-module=src/modules/fastcgi/libfastcgi.a
>
> but I tried it without the mod_* but made no difference ...
>
> I'm using openssl-0.9.5a.
>
> I read about the randon device and left it to default in the
> Configuration.tmpl..
>
> I noticed there are other report about the same problem:
> 354
> 384
> 395
> 396
> 407
>
> We really need the SSL working here, so please respond ASAP.
>
> --
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> ! __ __ _ ______ __ _ _ _ _(@)| The opinions here are expressed !
> ! /__) /_ /_\/ / / / / /| / | "as is", with no warranty of any!
> ! / \ /__/ /\__\___/_ /_/ _/ |/ | kind. Use them at your own risk.!
> ! | !
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> \ Oswaldo E. Aguirre M. \
> / Computer Science Engineer /
> \ Internet Services Coordinator \
> / [EMAIL PROTECTED] /
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
