[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: EGD not used?


OpenSSL does not use egd by default, the caller application must explicitly
ask it to do so. It is because there is no default location of the egd
socket so OpenSSL does not know where to look for it. With OpenSSH, you
have to specify the location of the egd socket at compile time. With
OpenLDAP, you must give the same information run-time.

OpenLDAP first looks for TLS_RANDFILE in ldap.conf; if there is no such
directive, it will consult the RANDFILE environment variable.

Btw. I just noticed that OpenLDAP does not update the random seed file if
it is being used. Not good...


Gabor Gombas                                       Eotvos Lorand University
E-mail: gombasg@inf.elte.hu                        Hungary