> Something like this may help you out:
>
> rand_buf = "0123456789ABCDEF0";
> RAND_seed(rand_buf, 17);
> /* One or the other will do */
> RAND_add(rand_buf, 17, 17);
Seeding with a static stream is as worthless as no seeding at all.
Try using something *random* for your RAND_seed. If you don't
have /dev/urandom, then grab egd/prgd and use it as a source
instead. Or worst case use a file with RAND_load_file which
you overwrite each time with new random info via RAND_write_file.
And no, current system time/pid/ppid/num procs/etc is *not* sufficient.
--
Brian Hatch "The next time you want a revelation
Systems and could you possibly find a way that isn't
Security Engineer quite so ... uncomfortable?"
http://www.ifokr.org/bri/
Every message PGP signed
PGP signature
