[Openswan Users] rsasigkey generating problem ...
Paul Wouters
paul at xelerance.com
Thu Aug 23 11:21:01 EDT 2007
On Thu, 23 Aug 2007, Francois-Xavier DETOURNIERE wrote:
> I think you need more "entropy" on your system to generate random bytes.
> For me, launching a "find /" on another terminal generates enough
> entropy for RSA generation after few seconds.
I tend to do "find / -type f | xargs grep ZSGDFGDFHGSDFDSFHDFGSR > /dev/null",
which generates more disk interrupts because it reads in the entire disk.
But the same idea.
Note that you can run ipsec newhostkey --output filename on a *different* machine
that has more entropy, and then just copy the file onto the embedded device
as "/etc/ipsec.secrets"
Paul
> Regards
>
> FX
>
> On 8/23/07, Toni Cosma <tonis at alphanet.ro> wrote:
> >
> >
> > Hi all,
> >
> > When I want to generate rsasigkey with the
> > command: ipsec rsasigkey --verbose 1024 > /key
> > or
> > /usr/local/libexec/ipsec/rsasigkey --verbose 1024 > /key
> > the system halt at the following message:
> > getting 64 random bytes from /dev/random...
> > until when I hit Ctrl+C
> >
> > thx
> >
> >
> >
> >
> >
> >
> >
> > _______________________________________________
> > Users at openswan.org
> > http://lists.openswan.org/mailman/listinfo/users
> > Building and Integrating Virtual Private Networks with Openswan:
> > http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
> >
> >
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list