Re: openSSL Key generation

From: Michal Luczak (warf) (warf@wp-sa.pl)
Date: 02/10/03

  • Next message: Peter Kirby: "Re: LKM Trojan installed" 
    Date: Mon, 10 Feb 2003 11:00:37 +0100
From: "Michal Luczak (warf)" <warf@wp-sa.pl>
To: focus-linux@securityfocus.com

    On 04 Feb AD 2003, "Leland T. Snyder" <ltsnyder@x3ci.com> wrote:
    > I'm executing the command to generate a server key according to the RedHat
    > linux manual, my system is as follows:
    [...]
     
    > ==========================================================================
    > [root@basea1 tmp]#
    > [root@basea1 tmp]#
    > [root@basea1 tmp]# nohup time /usr/bin/openssl genrsa -rand /dev/urandom
    > 1024 > /tmp/server.key &
    > ==========================================================================
    >
    > While the manual says this might take a long time, it has been running all
    > night, are athalon processors slow? or did I phrase my command incorrectly?
    > CPU time is being consumed like crazy.
    >
    > ==========================================================================
    [...]

    Hello

    Openssl needs a finite file.

    If you really want to use /dev/urandom then try something like this:
    ~ # dd if=/dev/urandom of=/tmp/random.data bs=1024 count=1024
    1024+0 records in
    1024+0 records out
    ~ # time /usr/bin/openssl genrsa -rand /tmp/random.data 1024 > server.key
    1048576 semi-random bytes loaded
    Generating RSA private key, 1024 bit long modulus
    [...]
    real 0m0.766s
    user 0m0.680s
    sys 0m0.000s
    ~ #

    Best regards
                    Michal Luczak 

    -- 
warf
# vim: noai tw=78 ts=2
                                                  WP - PTI - DIP - ZAS - SA

    Relevant Pages

    • Re: TSO EDIT command
      ... EDIT is simply a command that prompts the user for subcommands, and processes them, and eventually returns to the TMP so the TMP can invoke the next command. ... If the app is running in a CLIST the "get" part of the PUTGET is satisfied when the CLIST eventually reaches something that is not a CLIST statement, but a command, and the app gets that returned to it. ... so a task/process left in background can't meddle with storage of a possibly authorized command. ...
      (bit.listserv.ibm-main)
    • Re: [9fans] =?iso-8859-1?q?gr=EBp_=28rhymes_with_creep=29_and_cptmp?=
      ... $ grep facade word ... Note that line word:92 (output by the second command) is not output by ... I translate each ordinary latin character in the input pattern (eg ... cp -pr $1 $tmp ...
      (comp.os.plan9)
    • Re: TSO EDIT command
      ... and the TMP; perhaps ECB semaphores, POSIX pipes, or sockets. ... If the app is running in a CLIST the "get" part of the PUTGET is satisfied when the CLIST eventually reaches something that is not a CLIST statement, but a command, and the app gets that returned to it. ... For IBM-MAIN subscribe / signoff / archive access instructions, send email to listserv@xxxxxxxxxxx with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html. ...
      (bit.listserv.ibm-main)
    • [PATCH] scsi: Scsi_Cmnd convertion in sun3-driver
      ... The command to work on. ... NEXT(tmp); tmp = NEXT) ... unsigned char tmp, phase; ...
      (Linux-Kernel)