openssl on TRU64 V4.0 1

[gosuc2000]

Hi Gurus,

I have a problem to create certificates with openssl under
TRU64 v4.0F.
I could install openssl without any problems and can call the openssl-commandline.
So I want to create my own CA. When I want to create the root-
certificate, openssl complains the missing random numbergenerator.
I know there is a prng (pseudo-random numbergenerator)
program , but I have no Idea how to compile and use it.

Can anyone of you give me some help on either prng or
how to solve that random numbergenerator problem on TRU64 V.4.0 ?

Any help is apreciated.


Regards,

Fred

 

[Mike042]

We used this on some Tru64 v4.0F systems a while ago. In my very sketchy notes I wrote this:

Packages Installed:
nsPerl5.005_03
egd-0.8
zlib-1.1.3
OpenSSL-0.9.6a
OpenSSH-2.9p1

The system lacks /dev/random so egd (entropy gathering daemon) is used to increase security for OpenSSH. This is a perl module egd.pl .
Configure OpenSSH with --with-egd-pool=/etc/entropy
Search for CPPFLAGS= and add -I/path/to/zlib_files


I hope it helps (a bit).

Mike

 

[gosuc2000]

Hello,

thank you for the rapid response. At just about the same time I also tried to install egd and started it with
egd /etc/entropy. That was it, and I didn't have to use perl. But if I understand what I have read about egd is that entropy is just for a certain amount of requests, and
after that it has to gather new entropy-information in order to accept more requests.
So I installed the follow-up product prngd - which asumes
to have edg installed. prngd does only once have to gather entropy and thats it, that is, you can make as many requests as you want, just as if you would have a /dev/random device.

But your tip was the right thing to get openssl working!

Thanks again for the valuable help Mike.

regards

Fred