[guardian-dev] using /dev/random in openssl
Hans-Christoph Steiner
hans at guardianproject.info
Thu Mar 27 21:11:00 EDT 2014
Anyone have any opinions about generating keys with openssl using /dev/random
on GNU/Linux? i.e.
openssl genrsa -out key.pem -rand /dev/random 2048
I figure there had been many flaws related to poorly seeded and implemented
CSPRNGs that might as well just use pure random. Sure, it takes a lot longer,
but its only once.
.hc
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
More information about the Guardian-dev
mailing list