[openssl-users] FIPS mode uses /dev/urandom ?

Alberto Roman Linacero aroman at alienvault.com
Wed Mar 11 15:40:03 UTC 2015

Dear all, I'm doing an strace to the FIPS validated version of
openssl, and I'm seeing that is uses /dev/urandom. I thought that the
FIPS validated module always use /dev/random, isn't this the case, or
am I doing something wrong?.

If it uses /dev/urandom, is it possible/advisable to change it to
/dev/random (how?), and still the module being FIPS validated?

Thanks for your help in advance and best regards,

More information about the openssl-users mailing list