dnssec-keygen not responding
Mark Elkins
mje at posix.co.za
Wed Nov 30 21:15:20 UTC 2011
On Wed, 2011-11-30 at 13:45 -0600, Michael Graff wrote:
> On Nov 30, 2011, at 3:01 AM, Torsten Segner wrote:
> > In RHEL there is a RPM package called unuran.
> > It's a random number generator daemon using either a piece of hardware or /dev/urandom as source. Running this will provide enough entropy to create lots of keys.
>
> I'd be rather wary of keys made from /dev/urandom but I am often times a paranoid security freak.
>
> For my VM environment, I bought a USB random source, and share it across the VMs with a little daemon I wrote. Of course, you could just map the RNG into the VM you need too, and even move it around.
>
> --Michael
I installed the 'haveged' package, www.irisa.fr/caps/projects/hipsor
Sort of reads 'entropy' from the CPU and feeds it into /dev/random
--
. . ___. .__ Posix Systems - (South) Africa
/| /| / /__ mje at posix.co.za - Mark J Elkins, Cisco CCIE
/ |/ |ARK \_/ /__ LKINS Tel: +27 12 807 0590 Cell: +27 82 601 0496
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4007 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20111130/b8296b90/attachment-0001.bin>
More information about the bind-users
mailing list