kbg wrote: > > Hy, > > I'm trying to generate a 40 key to be used with an ssl-apache server > (due to country limitations). What country limitations? > > I've tried many things to generate it... > ssleay genrsa -rand rand.dat -des 40 > server.key > gives me a server.key file that looks nice, but doing > ssleay req -new -key server.key -out server.csr > gives me errors: > > 5682:error:04074070:rsa routines:RSA_sign:digest too big for rsa > key:rsa_sign.c:105: > 5682:error:0D072006:asn1 encoding routines:ASN1_SIGN:EVP > lib:a_sign.c:132: > > If someone could give me a hint... Yeah - don't try to use a 40 bit RSA key. That's far too small. If you want to use 40-bit session keys, then restrict the ciphersuites you use. Cheers, Ben. -- http://www.apache-ssl.org/ben.html "My grandfather once told me that there are two kinds of people: those who work and those who take the credit. He told me to try to be in the first group; there was less competition there." - Indira Gandhi ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
