From owner-freebsd-questions@FreeBSD.ORG Sun Nov 11 02:59:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8D8A116A418 for ; Sun, 11 Nov 2007 02:59:31 +0000 (UTC) (envelope-from chuckr@chuckr.org) Received: from mail2.sea5.speakeasy.net (mail2.sea5.speakeasy.net [69.17.117.4]) by mx1.freebsd.org (Postfix) with ESMTP id 63D3413C4A7 for ; Sun, 11 Nov 2007 02:59:31 +0000 (UTC) (envelope-from chuckr@chuckr.org) Received: (qmail 14282 invoked from network); 11 Nov 2007 02:59:17 -0000 Received: from april.chuckr.org (chuckr@[66.92.151.30]) (envelope-sender ) by mail2.sea5.speakeasy.net (qmail-ldap-1.03) with AES256-SHA encrypted SMTP for ; 11 Nov 2007 02:59:17 -0000 Message-ID: <47366FCF.7060903@chuckr.org> Date: Sat, 10 Nov 2007 21:58:23 -0500 From: Chuck Robey User-Agent: Thunderbird 2.0.0.6 (X11/20071107) MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <846921.73269.qm@web34404.mail.mud.yahoo.com> <20071111015823.GE6698@saraswathy.susmita.org> In-Reply-To: <20071111015823.GE6698@saraswathy.susmita.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: ' Openssl.cnf ' and ' .rand ' file X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Nov 2007 02:59:31 -0000 Girish Venkatachalam wrote: > On 11:22:10 Nov 10, White Hat wrote: >> openssl 0.9.7e-p1 25 Oct 2004 >> >> I have not been able to find an answer to this question on Google, so I figured I had better ask it here. >> >> In the '/etc/ssl/openssl.cnf' file, there is an entry for: >> >> RANDFILE = $dir/private/.rand # private random number file >> >> Well, that file does not exist. I cannot find it anywhere on my system and I have not been able to figure out how to create it. >> >> Also, where could I locate some information on the 'openssl.cnf' file. There does not appear to be a 'man' page for it. I would like some more information on what all of the settings mean and possibly how to set them for my particular needs. > > Why do you want it? > > You can use the openssl rand command for doing what you may be wanting > to do. > > $ openssl rand 10000 > > if you want binary output of length 10000 bytes or you can use the > -base64 switch for ASCII output. > > (You don't need the RANDFILE which is probably a seed or something) > > Most parts of OpenSSL are not documented properly and the source code is > immensely hard to follow. > > I have worked with the guts of OpenSSL long ago and in spite of working > with it for a long time, I have always found it hard to follow what > happens where. :) Well, that's a bit of a personal opinion, but have you even used the sclient and sserver functions of the openssl command? Damn, but that's a fantastic debugging tool! Nicely documented in the openssl man page, too. > > The code is one of the most intricate uses of the wonderful C language. > :) > > Enjoy the fun! :) > > Thanks. > > regards, > Girish > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"