[Openswan Users] rsasigkey

Paul Wouters paul at xelerance.com
Wed Oct 10 12:04:11 EDT 2007

On Wed, 10 Oct 2007, Tonis wrote:

> I make the same mistake somewhere in recompilation
> of kernel but I don't know where.
> After every recompilation I cannot generate
> rsasigkey. The command "rsasigkey --verbose 1024 > key" stops
> at "getting 64 random bytes from /dev/random..."
> on a standard kernel delivered with a distribution (like slackware for instance),
> the generation works, but after recompilation it doesn't work anymore.

Then the random/entropy is not properly working on your system.
On embedded systems, getting entropy is hard, so on those it is possible that
generating a key would takes hours. In such cases, generate the key on another
system and copy the ipsec.secrets file on the embedded device.

Building and integrating Virtual Private Networks with Openswan:

More information about the Users mailing list