>From: owner-openssl-us...@openssl.org On Behalf Of Evan Brown >Sent: Wednesday, 13 March, 2013 11:02
>openssl genrsa -aes256 -out private.pem 2048 >Am I correct in my understanding that OpenSSL adds a salt >to the passphrase that I specify when this command runs? >How is the salt computed and where is it stored for use later >in the key decryption process? Does OpenSSL calculate the salt >again from the passphrase when I decrypt the key? For PEM(ish) encrypted privatekey files, OpenSSL uses one random value for both salt and IV, and stores it in PEM header. Decryption uses this stored value as both salt and IV. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
