Entropy and DSA key
mouring at etoh.eviladmin.org
mouring at etoh.eviladmin.org
Tue Nov 6 02:59:30 EST 2001
Maybe we should have set internal entropy to --with-internal-entropy at
the 3.0 instead of having it default. (Thus having ./configure failure
if it does not find entropy)
I think most people will ignore messages if ./configure success.
- Ben
On Tue, 6 Nov 2001, Damien Miller wrote:
> On Mon, 5 Nov 2001, Laurent Papier wrote:
>
> > > No, you should adjust ssh_prng_cmds to gather more entropy or pester your
> > > OS vendor for /dev/random.
> >
> > We have the exact same problem here on AIX 3.x. We now use prngd and this
> > completly solve the problem.
>
> Short of pursuading your OS vendor to give you a /dev/random, using
> PRNGd is the best approach. IMO the built-in entropy code should
> really be a last resort.
>
> -d
>
> --
> | By convention there is color, \\ Damien Miller <djm at mindrot.org>
> | By convention sweetness, By convention bitterness, \\ www.mindrot.org
> | But in reality there are atoms and space - Democritus (c. 400 BCE)
>
>
More information about the openssh-unix-dev
mailing list