From man req (which is available at www.openssl.org)
RANDFILE
This specifies a filename in which random number seed information is placed and read from, or an EGD socket (see RAND_egd(3)). It is used for private key generation.
===
On Unix I've used something as simple as
(date; du) >randomfile
...
RANDFILE randomfile
which just puts something that is always changing (date) and something that is very difficult to predict for past or future dates (the free space on the disk) into a file (this is outside the ssl.conf file tho) but perhaps you could name some Windows log file or something.
We're way past this in Unix now because many Unix systems have the /dev/random or /dev/urandom devices - and if these are present OpenSSl doesn't need the RANDFILE.
-- "An Internet-connected Windows machine is tantamount to a toddler carrying a baggie of $100 bills down a city street..."
Charles B (Ben) Cranston mailto: [EMAIL PROTECTED] http://www.wam.umd.edu/~zben
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
