Entropy and DSA key
Damien Miller
djm at mindrot.org
Tue Nov 6 00:01:48 EST 2001
On Mon, 5 Nov 2001, Laurent Papier wrote:
> > No, you should adjust ssh_prng_cmds to gather more entropy or pester your
> > OS vendor for /dev/random.
>
> We have the exact same problem here on AIX 3.x. We now use prngd and this
> completly solve the problem.
Short of pursuading your OS vendor to give you a /dev/random, using
PRNGd is the best approach. IMO the built-in entropy code should
really be a last resort.
-d
--
| By convention there is color, \\ Damien Miller <djm at mindrot.org>
| By convention sweetness, By convention bitterness, \\ www.mindrot.org
| But in reality there are atoms and space - Democritus (c. 400 BCE)
More information about the openssh-unix-dev
mailing list