On Wed, 6 Aug 2008, Stanislav Meduna wrote: > So what should the applications calling openssl actually > do if this happens? Now the ssh/apache/... simply exit, > which is bad (it left me without an access to a remote > box...).
Exiting is the best behaviour - continuing without a good source of randomness may compromise cryptographic protocols and even long-term private keys (e.g. if DSA is used). -d ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
