> Ok thanks for the quick response, but still i have again the same doubt in
> the order of preferencing the definition for DEVRANDOM.
>
> I just came to know they two behave differently as ive listed below. So
> since /dev/random produce high quality random numbers, then
> should it appear
> first in the list?
No.
> Bytes retrieved from /dev/random provide the highest quality
> random numbers
> and can be used to generate long term keys and other high value
> keying material.
>
> But comparitively bytes produced by the /dev/urandom interface are of
> lower quality than bytes produced by /dev/random, they are nonetheless
> suitable for less
> demanding and shorter term cryptographic uses such as short term session
> keys, paddings, and challenge strings.
In cases where things are set up properly, it makes no difference. In cases
where things are not setup properly, /dev/random will not work but
/dev/urandom will.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
