dnssec-keygen not responding

Mark Elkins mje at posix.co.za
Wed Nov 30 21:15:20 UTC 2011


On Wed, 2011-11-30 at 13:45 -0600, Michael Graff wrote:
> On Nov 30, 2011, at 3:01 AM, Torsten Segner wrote:
> > In RHEL there is a RPM package called unuran. 
> > It's a random number generator daemon using either a piece of hardware or /dev/urandom as source. Running this will provide enough entropy to create lots of keys.
> 
> I'd be rather wary of keys made from /dev/urandom but I am often times a paranoid security freak.
> 
> For my VM environment, I bought a USB random source, and share it across the VMs with a little daemon I wrote.  Of course, you could just map the RNG into the VM you need too, and even move it around.
> 
> --Michael

I installed the 'haveged' package, www.irisa.fr/caps/projects/hipsor
Sort of reads 'entropy' from the CPU and feeds it into /dev/random
-- 
  .  .     ___. .__      Posix Systems - (South) Africa
 /| /|       / /__       mje at posix.co.za  -  Mark J Elkins, Cisco CCIE
/ |/ |ARK \_/ /__ LKINS  Tel: +27 12 807 0590  Cell: +27 82 601 0496

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4007 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20111130/b8296b90/attachment-0001.bin>


More information about the bind-users mailing list