On Fri, Feb 02, 2001 at 04:28:06AM -0700, Boyd Lynn Gerber wrote:
> On Fri, 2 Feb 2001, Lutz Jaenicke wrote:
> <cut>
> > Hmm, doesn't look that bad. I just tried the following (I have a $HOME/.rnd,
> > if that matters, my openssl.cnf is the distributed one):
> > emws1 24: openssl req -rand /var/run/egd-pool -new -x509 -keyout key.pem -out
>cert.pem
>
> I ran the above command with the same result about random state. I even
> logged in as root. I have a .rnd in / and in /usr/local/ssl. I am still
> getting the same error. I even made my openssl.cnf the orignal one
>
> # ls -la $HOME/.rnd
> -rw-r--r-- 1 root sys 0 Feb 2 04:10 //.rnd
>
> # ls -la /usr/local/ssl/.rnd
> -rw-r--r-- 1 root sys 0 Feb 2 04:11 /usr/local/ssl/.rnd
Make sure to have random data in .rnd
openssl rand -out /.rnd -rand /var/run/egd-pool:/var/adm/syslog/mail.log:...
to initialize /.rnd to have startup-seed.
(Add some logfiles as entropy source. Be patient as sucking in several
megabytes of data might take some time...)
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
