Do you have something I can read up on?
On 09/02/16 12:09, Salz, Rich wrote:
I thought DSA was more secure than RSA? Granted, "I thought" is a newbie
understanding.
This is completely wrong.
--
openssl-users mailing list
To unsubscribe:
Rich,
I thought DSA was more secure than RSA? Granted, "I thought" is a newbie
understanding.
Leam
On 09/02/16 11:57, Salz, Rich wrote:
Unless you have to interoperate with other systems, *do not use DSA.* If you
re-use a the random, the entire key can be be exposed.
Crypto is hard
Thanks to Matt Caswell for helping me fix the DSA question. His
solution, based of the information I provided, was:
openssl genpkey -genparam -algorithm DSA -pkeyopt \
dsa_paramgen_bits:2048 -out dsa.params
openssl genpkey -paramfile dsa.params -out dsa.key
Which
On 08/26/16 18:51, Matt Caswell wrote:
DSA needs parameters specifying.
Try this:
openssl genpkey -genparam -algorithm DSA -pkeyopt dsa_paramgen_bits:2048
-out dsa.params
openssl genpkey -paramfile dsa.params -out dsa.key
Matt
Matt, thanks! That was it.
Leam
--
openssl-users mailing
More than likely it's operator error.
OS Version:
CentOS 6, patched.
openssl version:
OpenSSL 1.0.1e-fips 11 Feb 2013
Works:
openssl genpkey -algorithm RSA -out fred_ssl.key
++
++
Fails:
openssl genpkey -algorithm DSA