check_http/egd/OpenSSL

Brought to you by: egalstad, hgayosso, kdebisschop

#8 check_http/egd/OpenSSL

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2000-12-02

Created: 2000-12-02

Creator: Adrian Goins

Private: No

Discussion

Nobody/Anonymous - 2000-12-02

Logged In: YES
user_id=114435
Browser: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)

this isn't really a support request, but i'm not sure
where else to post it.

i'm using netsaint on Solaris 7, with OpenSSL. i've
been mucking with the plugins today, trying to get
check_http to run with SSL checks and not freak out.

because solaris has no /dev/random, i installed the
Entropy Gathering Daemon from
http://www.lothar.com/tech/crypto to help OpenSSL
gather random data. after configuring OpenSSL to pull
information from /etc/entropy (recompiled the path
statically into the library), i recompiled
check_http. however, i still got the following:

25016:error:24064064:random number
generator:SSLEAY_RAND_BYTES:PRNG not
seeded:md_rand.c:474:You need to read the OpenSSL FAQ,
http://www.openssl.org/support/faq.html

i added two lines to check_http.c:

#include "openssl/rand.h"; on line 78
RAND_egd( "/etc/entropy" ); on line 843

the application now correctly seeds the entropy pool
and reads from it without bitching.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.