where is my randomness?

Simon 'corecode' Schubert corecode at fs.ei.tum.de
Sun Jan 22 16:42:32 PST 2006


hey,

just checked and i don't have a single bit of randomness available (== 
reading from /dev/random produces EOF).  seems nobody refilled the entropy.

further research showed that we don't even set the entropy_* stuff in 
/etc/defaults/rc.conf and we also don't have some fancy script called 
save_entropy which should be called from cron (like freebsd have).

where is all this stuff and why don't we turn on interrupt entropy 
gathering by default?

and why is openssl happy with this in the first place?  openssh/openssl 
shouldn't even get to produce a private/public key pair without randomness?

cheers
  simon
--
Serve - BSD     +++  RENT this banner advert  +++    ASCII Ribbon   /"\
Work - Mac      +++  space for low €€€ NOW!1  +++      Campaign     \ /
Party Enjoy Relax   |   http://dragonflybsd.org      Against  HTML   \
Dude 2c 2 the max   !   http://golden-apple.biz       Mail + News   / \




More information about the Users mailing list