You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by "Lemaire, David W." <dl...@ems.com> on 2003/07/16 19:52:23 UTC
RE: [users@httpd] mod_ssl Failed to generate temporary 512 bit RS
A private key
If you are on Solaris 8, you need patch number 112438-01 for sufficient
entropy.
It requires a reboot.
Dave Lemaire
Systems Administrator
603-924-9571 x5102
/*
Problems cannot be solved at the same level
of awareness that created them. -A. Einstein
*/
-----Original Message-----
From: Lash, David A (David) [mailto:dlash@lucent.com]
Sent: Wednesday, July 16, 2003 1:49 PM
To: 'users@httpd.apache.org'
Subject: [users@httpd] mod_ssl Failed to generate temporary 512 bit RSA
private key
Hi
Has anyone seen this error. (aftern doing a make certificate, then make
install) I get the following
message when I start the deamon
Failed to generate temporary 512 bit RSA private key
I see a FAQ at http://www.modssl.org/docs/2.6/ssl_faq.html#entropy
. So mod_ssl has to provide enough entropy to the PRNG to work correctly.
For this one has to use the SSLRandomSeed directives (to solve the run-time
problem) and create a $HOME/.rnd file to make sure enough entropy is
available also for the "make certificate" step (in case the "make
certificate" procedure is not able to gather enough entropy theirself by
searching for system files).
But I have no idea what it means to help make certificate "gather entropy"
or to " make sure enough entropy is available. " Also where is $HOME/.rnd is
that where apache is installed?
thanks
dave lash
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info. To
unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org