OPENSSL 질문

 
이회선
조언자

OPENSSL 질문

OPENSSL 컴파일후 키생성시

"PRNG not seeded" 에러 메시지가 나오면서 진행이 안되네요.



랜덤값 생성시 randomness device (/dev/urandom or /dev/random) 가 없어서 발생되는 문제 같아서 random 디바이스 장치를

"mknod /dev/random c 1 4" 로 만들고 해도 동일한 에러메세지가 나옵니다.



OS 버젼은 11.11 입니다.

어떻게하면 해결할수 있을까요?



1 응답 1
고광태
중학생

OPENSSL 질문

아래자료 참조하시길..



The /opt/openssl/prngd/prngd random number generator daemon should be

running prior to executing openssl.



To start prngd use the following command, specifying full paths to the

executable and configuration file:





# /opt/openssl/prngd/prngd -n -c /opt/openssl/prngd/prngd.conf /var/run/egd-

pool





confirm that the prngd is runnning:



# ps -ef | grep prngd



Now you can execute openssl:



# /opt/openssl/bin/openssl genrsa -des3 -out /tmp/server.key



Generating RSA private key, 512 bit long modulus

...++++++++++++

.....................++++++++++++



The file $HOME/.rnd is created and can be used to generate the random

number if prgnd is not running.



To stop prgnd:



# /opt/openssl/prngd/prngd -k /var/run/egd-pool





If your application requires the prgnd to be available all the time,

you can start it using cron. For more information on prngd see the man

page prngd(1).