[157282] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: best way to create entropy?

daemon@ATHENA.MIT.EDU (Sander Steffann)
Sun Oct 14 06:27:13 2012

From: Sander Steffann <sander@steffann.nl>
In-Reply-To: <CAH_OBie+x7fArBo1csVhZKuakVr=G6cF0t0jSNmo-dS2oX=EjA@mail.gmail.com>
Date: Sun, 14 Oct 2012 12:26:57 +0200
To: shawn wilson <ag4ve.us@gmail.com>
Cc: North American Network Operators Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

Hi,

When you let OpenSSH use the egd protocol directly it will get its =
entropy from an egd daemon. Otherwise it uses /dev/random. When you use =
ekeyd-egd-linux then you feed the entropy from the egd daemon to the =
pool used for /dev/random. That way you are not completely dependent on =
the egd daemon, and other applications that need entropy benefit from =
the better-filled pool.

And yes, I run ekeyd-egd-linux on many VMs :-)
Sander


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[157282] in North American Network Operators' Group

Re: best way to create entropy?

daemon@ATHENA.MIT.EDU (Sander Steffann)Sun Oct 14 06:27:13 2012

daemon@ATHENA.MIT.EDU (Sander Steffann)
Sun Oct 14 06:27:13 2012