sendmail 8.12.6

sendmail 8.12.6

Post by Joerg-Uwe Tessme » Sat, 21 Jun 2003 16:02:35



Hi all,

i have installed sendmail 8.12.6 from the internet express 6.0 CD.
when sendmail started, i read this error message:

Jun 20 08:49:21 netserv sendmail[385045]: STARTTLS: Error: missing
random file definition
Jun 20 08:49:21 netserv sendmail[385066]: starting daemon (8.12.6):

Jun 20 08:53:44 netserv sendmail[385105]: STARTTLS: Error: missing
random file definition

Can anybody tell me whats wrong? What is the "random file definition"?
I am confused, any help would be greatly appreciated.

        Joerg
--
Joerg-Uwe Tessmer              Universitaet Potsdam
Tel.: +49+331-9771613          Institut fuer Physik        
Fax.: +49+331-9771142      Lehrstuhl Nichtlineare Dynamik
https://www.agnld.uni-potsdam.de/~joerg

 
 
 

sendmail 8.12.6

Post by Nikola Milutinovi » Tue, 24 Jun 2003 15:49:11



> Hi all,

> i have installed sendmail 8.12.6 from the internet express 6.0 CD.
> when sendmail started, i read this error message:

> Jun 20 08:49:21 netserv sendmail[385045]: STARTTLS: Error: missing
> random file definition
> Jun 20 08:49:21 netserv sendmail[385066]: starting daemon (8.12.6):

> Jun 20 08:53:44 netserv sendmail[385105]: STARTTLS: Error: missing
> random file definition

> Can anybody tell me whats wrong? What is the "random file definition"?
> I am confused, any help would be greatly appreciated.

TLS/SSL - Trusted Socket Layer/Secure Socket Layer

This is a mechanism to do encryption and authentication via X.509
certificates, supported by many popular e-mail clients (OE, Netscape,
Opera,...). In order to perform encrytpion, the SSL/TLS engine needs a good
source of randomness. Tru64 5.x (5.1 at least) has /dev/random support.
Other systems should use EGD compatible daemons (EGD is a Perl daemon and
there is also PRNGD, a C version), which supply a socket.

A Sendmail confiig has a section that in my case looks like this (Tru64
4.0D):

# CA directory
O CACertPath=/usr/opt/Sendmail-8.12.9/config/CA
# CA file
O CACertFile=/usr/opt/Sendmail-8.12.9/config/CA/certs/EVnet-cert.pem
# Server Cert
O ServerCertFile=/usr/opt/Sendmail-8.12.9/config/CA/certs/SM-Uprava-cert.pem
# Server private key
O ServerKeyFile=/usr/opt/Sendmail-8.12.9/config/CA/private/SM-Uprava-key.pem
# Client Cert
O ClientCertFile=/usr/opt/Sendmail-8.12.9/config/CA/certs/SM-Uprava-cert.pem
# Client private key
O ClientKeyFile=/usr/opt/Sendmail-8.12.9/config/CA/private/SM-Uprava-key.pem
# DHParameters (only required if DSA/DH is used)
#O DHParameters
# Random data source (required for systems without /dev/urandom under
OpenSSL)
O RandFile=egd:/dev/egd-pool

The last line sets up random file.

This, of course, is my own Sendmail package and has nothing to do with
Compaq/HP stuff. 4.0D is out of support. I hope to upgrade to 5.1 soon.

Nix.