Re: openSSL Key generation
From: Leland T. Snyder (ltsnyder@x3ci.com)
Date: 02/06/03
- Previous message: Leland T. Snyder: "SSL and Kerberos"
- In reply to: Leland T. Snyder: "openSSL Key generation"
- Next in thread: Michal Luczak (warf): "Re: openSSL Key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Leland T. Snyder" <ltsnyder@x3ci.com> To: "Leland T. Snyder" <ltsnyder@x3ci.com>, <focus-linux@securityfocus.com> Date: Thu, 6 Feb 2003 12:32:20 -0500
To answer my own question if only in part, I found another part of the
manual that clarified this.
The command would be . . .
[root@base04 root]# /usr/bin/openssl genrsa -des 1024 > /tmp/server.key
Generating RSA private key, 1024 bit long modulus
................................................++++++
.....++++++
e is 65537 (0x10001)
Enter PEM pass phrase:
Verifying password - Enter PEM pass phrase:
[root@base04 root]#
Seems like their is an equivilant DSA key generation command gendsa.
I the doc I was looking at was out of date with an old command line argument
format.
-Leland
----- Original Message -----
From: "Leland T. Snyder" <ltsnyder@x3ci.com>
To: <focus-linux@securityfocus.com>
Sent: Tuesday, February 04, 2003 12:05 AM
Subject: openSSL Key generation
> I'm executing the command to generate a server key according to the RedHat
> linux manual, my system is as follows:
>
> Software: Redhat 8.0 all current security updates installed.
> The system is a 1.2 GHrt Athalon with 512MB Memory.
>
> [root@base04 root]# rpm --query --all | grep -i openssl
> openssl-0.9.6b-29
> pyOpenSSL-0.5.0.91-1
> openssl-devel-0.9.6b-29
> [root@base04 root]# rpm --query --all | grep -i kernel
> kernel-pcmcia-cs-3.1.31-9
> kernel-source-2.4.18-14
> kernel-2.4.18-17.8.0
> kernel-2.4.18-14
> kernel-2.4.18-19.8.0
>
> ==========================================================================
> [root@basea1 tmp]#
> [root@basea1 tmp]#
> [root@basea1 tmp]# nohup time /usr/bin/openssl genrsa -rand /dev/urandom
> 1024 > /tmp/server.key &
> ==========================================================================
>
> While the manual says this might take a long time, it has been running all
> night, are athalon processors slow? or did I phrase my command
incorrectly?
> CPU time is being consumed like crazy.
>
> ==========================================================================
> 39 processes: 36 sleeping, 3 running, 0 zombie, 0 stopped
> CPU states: 0.1% user, 81.0% system, 18.7% nice, 0.0% idle
> Mem: 255412K av, 196248K used, 59164K free, 0K shrd, 84596K
> buff
> Swap: 1023616K av, 0K used, 1023616K free 91016K
> cached
>
> PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND
> 12559 root 30 5 800 800 668 R N 99.6 0.3 748:39 openssl
> 1 root 15 0 476 476 424 S 0.0 0.1 0:04 init
> 2 root 15 0 0 0 0 SW 0.0 0.0 0:00 keventd
>
> . . . Later the same day
>
> [root@base04 root]# top
>
> 12:46am up 8 days, 2:34, 1 user, load average: 1.08, 1.02, 1.01
> 42 processes: 38 sleeping, 4 running, 0 zombie, 0 stopped
> CPU states: 0.0% user, 5.1% system, 2.5% nice, 0.3% idle
> Mem: 255412K av, 200188K used, 55224K free, 0K shrd, 90152K
> buff
> Swap: 1023616K av, 0K used, 1023616K free 89388K
> cached
>
> PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND
> 12559 root 30 5 800 800 668 R N 99.4 0.3 1574m openssl
> 1 root 15 0 476 476 424 S 0.0 0.1 0:04 init
> 2 root 15 0 0 0 0 SW 0.0 0.0 0:00 keventd
> 3 root 15 0 0 0 0 SW 0.0 0.0 0:00 kapmd
>
> Thanks in advance for the help.
>
> -Leland
> Computer Consultants Consortium Incorporated
>
- Next message: Rivanor P. Soares: "LKM Trojan installed"
- Previous message: Leland T. Snyder: "SSL and Kerberos"
- In reply to: Leland T. Snyder: "openSSL Key generation"
- Next in thread: Michal Luczak (warf): "Re: openSSL Key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
