dnssec-keygen is waiting endless...

Casey Deccio casey at deccio.net
Fri May 28 18:15:30 UTC 2010

On Fri, May 28, 2010 at 10:41 AM, Michelle Konzack <
linux4michelle at tamay-dogan.net> wrote:

> Hello Paul,
> Am 2010-05-28 12:34:16, hacktest Du folgendes herunter:
> > My bet is that this is a VM and you have no entropy. Either generate some
> > entropy (eg run in paralel something like: find / -type f | xargs grep
> KSdgajkgdaksdga)
> > or create the keys on real iron instead of a VM.
> No, this a real machine:    AMD Sempron 2200+ (Socket A) with 3 GByte of
> memory and only standard Debian in stallation. The thing with the "find"
> does not work...
Running 'cat /proc/sys/kernel/random/entropy_avail' should show you what
your available entropy is during the keygen process.

There are a variety of things you can do to increase the size of the entropy
pool, but if you're willing to accept less entropy at this point to get
things going, pass '-r /dev/urandom' to dnssec-keygen (see 'man urandom').

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20100528/9ab9549a/attachment.html>

More information about the bind-users mailing list