On embedded systems you must always consider where you can collect
'entropy' from. This is highly dependent on your hardware. Haven't
worked with vxWorks before, but given your description, the generic
rule for [embedded] systems applies here as well.
Feed OpenSSL 'sufficient' entropy using RAND_a
On Fri, 1 Nov 2002 [EMAIL PROTECTED] wrote:
> More better is package 112438-x from sunsolve.sun.com - it adds /dev/random
> Or ANDIrand package from www.sunfreeware.com (I think).- the same, better
> then SUN package I think.
Sure, but this was specified in the original post:
> > I am using IBM
Hi,
I would like to ask one more question in connection to this one.
How would you gather randomness or entryopy on a system that doesn't have
any /dev/egd-pool or /dev/urandom or /dev/random.
What cn be good sources of randomness and how do I know how much randomness is
required?
Regards
Sura
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: PRNG not seeded ERROR
Hi Mr. Erwann:
THANKS for your reply.
I checked the url before I posted my query to this List. I am bit
confused - should I need to install EGD or PRNG? I checked my IBM
Server and could'nt find /dev/rando
Thanks Erwann:
I checked my System and have installed PRNG. I checked it by using:
# ps -ef | grep prng
root 47354 6518 0 14:13:01 - 0:03 /opt/freeware/sbin/prngd
On Thu, 31 Oct 2002, Manoj Kithany wrote:
> THANKS for your reply.
> I checked the url before I posted my query to this List. I am bit
Sorry if I offended you. You didn't specify in your first post that you
checked the URL, and since this question is in the FAQ, that means it is
asked a *lot* of
Hi Mr. Erwann:
THANKS for your reply.
I checked the url before I posted my query to this List. I am bit
confused - should I need to install EGD or PRNG? I checked my IBM
Server and could'nt find /dev/random?
Can you/anyone please help?
THANKS!
Manoj G. Kithany
>>> [EMAIL PROTECTED] 10
On Thu, 31 Oct 2002, Manoj Kithany wrote:
> I installing OPENSSL and when running I get following ERROR - wonder
> why:
> --
> # ./openssl req -new -nodes -keyout private.key -out public.csr
> Using configuration from /usr/loc
>From: Boyle Owen
>After upgrading to openSSL-0.9.6g and reinstalling
>openssh_3.4p1, I can't get ssh or sshd to work. As soon as I
>try to start the sshd daemon or an ssh session, I immediately
>get the command line error "PRNG is not seeded".
Thanks Lutz, for helping out - your tips really
On Wed, Aug 14, 2002 at 02:24:15PM +0200, Boyle Owen wrote:
> So, it looks like the newly installed ssh is trying to get its entropy from
>/dev/urandom instead of prngd. That would explain the "not seeded" error.
>Incidentally, apache/mod_ssl is working fine with this prngd so, indeed, the probl
>From: Lutz Jaenicke [mailto:[EMAIL PROTECTED]]
>> After upgrading to openSSL-0.9.6g and reinstalling
>openssh_3.4p1, I can't get ssh or sshd to work. As soon as I
>try to start the sshd daemon or an ssh session, I immediately
>get the command line error "PRNG is not seeded".
>I doubt that you
On Wed, Aug 14, 2002 at 11:42:51AM +0200, Boyle Owen wrote:
> Hi,
>
> After upgrading to openSSL-0.9.6g and reinstalling openssh_3.4p1, I can't get ssh or
>sshd to work. As soon as I try to start the sshd daemon or an ssh session, I
>immediately get the command line error "PRNG is not seeded".
To: [EMAIL PROTECTED]
Subject: Re: PRNG not seeded
[EMAIL PROTECTED] wrote:
>Dear Sir,
>
>I have installed OPENSSL on OSF1 V4.0 (Digital Unix) and I am trying to
>run the demos/bio programs saccept and sconnect.
>
>I run saccept localhost:8900 and all is fine.
>
>When I run scon
[EMAIL PROTECTED] wrote:
>Dear Sir,
>
>I have installed OPENSSL on OSF1 V4.0 (Digital Unix) and I am trying to
>run the demos/bio programs saccept and sconnect.
>
>I run saccept localhost:8900 and all is fine.
>
>When I run sconnect localhost:8900, I receive the following message:
>
>SSLEAY_RAND_
Get EGD or PRNGd from:
http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls/prngd.html
And call RAND_egd("/var/run/egd-pool");
before you try to use any crypt or ssl routines ...
Obviously /var/run/egd-pool may vary depending on where
you initialize the egd socket from egd or prngd
Pers
On Fri, Apr 06, 2001 at 11:34:48AM -0400, [EMAIL PROTECTED] wrote:
>
> Something like this may help you out:
>
> rand_buf = "0123456789ABCDEF0";
> RAND_seed(rand_buf, 17);
> /* One or the other will do */
> RAND_add(rand_buf, 17, 17);
First: fortunately it would not help out, si
> Something like this may help you out:
>
> rand_buf = "0123456789ABCDEF0";
> RAND_seed(rand_buf, 17);
> /* One or the other will do */
> RAND_add(rand_buf, 17, 17);
Seeding with a static stream is as worthless as no seeding at all.
Try using something *random* for your RAND_se
Something like this may help you out:
rand_buf = "0123456789ABCDEF0";
RAND_seed(rand_buf, 17);
/* One or the other will do */
RAND_add(rand_buf, 17, 17);
"De Closmadeuc, Etienne" <[EMAIL PROTECTED]> on 04/06/2001 03:48:28
AM
Please respond to [EMAIL PROTECTED]
To: opens
What about the error message "You need to read the OpenSSL FAQ,
http://www.openssl.org/support/faq.html " didn't you understand? The specified
FAQ includes a lengthy dissertation about what the problem is and what you can
do to fix the problem.
J. Edward Ellis
Battelle, Pacific Northwest Nation
SUNWski package is included in these patches, available at:
http://www.freeware4sun.com/patches/2.6/index.html
106754-01, 106755-01, 106756-01
Nils Lofstedt
Michael Sierchio wrote:
> Paul Allen wrote:
> > The SUNWski package works fine on Solaris 8. Really. It doesn't
> > complain at instal
Paul Allen wrote:
> The Sun Web Server patch that contains SUNWski is on the SunSolve web
> site. You need a current Sun software maintenance contract in order
> to get a SunSolve account. My favorite entry into SunSolve is:
>
> http://sunsolve.sun.com/private-cgi/search.pl?mode=advanced
>
Michael Sierchio wrote:
>
> Paul Allen wrote:
> > The SUNWski package works fine on Solaris 8. Really. It doesn't
> > complain at install time, and it works fine.
>
> Just for grins, could you post a definitive URL for the patch? The
> only pages I found listed it as a subscription-only patch
Paul Allen wrote:
> The SUNWski package works fine on Solaris 8. Really. It doesn't
> complain at install time, and it works fine.
Just for grins, could you post a definitive URL for the patch? The
only pages I found listed it as a subscription-only patch...
Thanks.
__
"Billigmeier, Chad" wrote:
>
> Sun doesn't seem to have any random number generator in /dev ??? Do I need
> to apply a patch?
>
> I did see the SUNWski patch but that seems to apply only to solaris < 2.6
>
> The PRNG not seeded message appears while attempting to make certificate for
> apache-s
On Thu, Mar 16, 2000 at 05:27:51PM +, Richard Hopkins wrote:
> Where I'm now having problems, though, is with stunnel (3.8). When I try to
> start it up, I get...
>
> dire# /usr/local/sbin/stunnel -f -D7 -d 636 -r 389
> LOG7[5786:1]: Service name to be used: 389
> LOG7[5786:1]: Generating 5
25 matches
Mail list logo
