Entropy and DSA key

Damien Miller djm at mindrot.org
Tue Nov 6 00:01:48 EST 2001


On Mon, 5 Nov 2001, Laurent Papier wrote:

> > No, you should adjust ssh_prng_cmds to gather more entropy or pester your
> > OS vendor for /dev/random.
> 
> We have the exact same problem here on AIX 3.x. We now use prngd and this
> completly solve the problem.

Short of pursuading your OS vendor to give you a /dev/random, using
PRNGd is the best approach. IMO the built-in entropy code should 
really be a last resort.

-d

-- 
| By convention there is color,       \\ Damien Miller <djm at mindrot.org>
| By convention sweetness, By convention bitterness, \\ www.mindrot.org
| But in reality there are atoms and space - Democritus (c. 400 BCE)




More information about the openssh-unix-dev mailing list