It is most likely that you don't have the random number generator setup
properly. By default the random number key is stored in a file under
$HOME/.rand (You can choose to specify a different one if you want).
Once you have the .rand file setup, you should be able to create a
certificate. For more information checkout help on openssl -rand on
www.openssl.org.
Alternatively, you can try 'make certificate' in your build environment
of apache+modssl and it should generate a certificate and private key
for you.
HTH,
Sai
> Rajiv Dulepet wrote:
>
> Hello everybody,
>
> I am running the following:
> Sun Solaris 2.7
> Apache 1.3.14
> modssl 2.7-1.3.14
> open-ssl.0.9.6
>
> I got the following message when I tried to start APACHE...
>
> ./apachectl start: httpd could not be started
> and error_log shows this:
> mod_ssl: Init: failed to generate temporary 512 bit RSA private key
>
> I went through modssl mailing lists, and based on some suggestions, I
> went to http://www.cosy.sbg.ac.at/~andi/ and downloaded
> ANDIrand-0.6-5.7-sparc-2.pkg. I am asssuming Solaris 7 is same as
> Solaris 2.7.
>
> I did pkgadd -d ANDIrand-0.6-5.7-sparc-2.pkg
>
> At the end of package installation it complained that:
> Driver (random) is installed.
> Initializing random number generator...
> driver not loaded!
>
> And this my guess says that random generator is not loaded or
> installed properly. Since I am still unable to generate certificate
> using openssl command:
>
> # ./openssl genrsa -des3 -out server.key 1024
>
> warning, not much extra random data, consider using the -rand option
> Generating RSA private key, 1024 bit long modulus
> 3169:error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not
> seeded:md
> _rand.c:474:You need to read the OpenSSL FAQ,
> http://www.openssl.org/support/faq.html
>
> Any help in this regard would be appreciated....
>
> Thanks,
> Rajiv
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
