Greetings In SSL 3.0 Specifications about ClientHello.random It is written random_bytes 28 bytes generated by a secure random generator. While for ServerHello.random it is written random structure generated by the server, but it is not written how this ServerHello.random is generated? Also can someone inform what PRNGs are used for generating these ClientHello.random and ServerHello.random and to what extent they are considered secure? Was there an attack in earlier versions of Openssl due to these PRNGs, I heard from somebody long ago something like this It is not clear in the specifications Thanks Shalendra
--------------------------------------------------------------------- You can be the BEST one, provided you wanna that!!!! Shalendra Chhabra Laboratoire Specification et Verification, Ecole Normale Superieure De Cachan, Pavillon Des Jardins, Chambre n 215, 61 Avenue Du President Wilson, Cachan Cedex France ph office 33.01.47.40.28.46 www.angelfire.com/linux/shalu ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
