random-device purpose in DNSSEC

Doug Barton dougb at dougbarton.us
Sun May 13 23:21:04 UTC 2012

On 5/13/2012 2:11 PM, Alexander Gurvitz wrote:
> My personal conclusions are that as I'll be using RSA only,
> I don't need to worry about named.conf random device.

That's not accurate. BIND uses random bits for other things as well. A
decent source of entropy for /dev/random is a requirement for basically
any Unix host anyways.

    If you're never wrong, you're not trying hard enough

More information about the bind-users mailing list