Daniel Stenberg wrote:

>> error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not seeded
>>
>> I found the OpenSSL docu
>> (http://www.openssl.org/support/faq.html#USER1) saying that the
>> random number generator needs certain initialization (at least 128
>> bit, ...). I browsed the curl sources and found the code in
>> 'ssluse.c', that seems to do the initialization of the random number
>> generator used by OpenSSL.
>>
>> Has anyone an idea why this error is only very rarely reported?
>
> Because most often the seed gets enough randomize!

What else would seed the random number generator, i.e. on a Windows machine?

> Consider providing your own random source (file) with
> CURLOPT_RANDOM_FILE.

As I understand the manual, It takes the content of the file as seed.
I suppose it is enough to set this option at the very first connection
and the file can be removed afterwards?

Many thanks
Jörg M-T
Received on 2004-10-26