[Openswan Users] rsasigkey
Paul Wouters
paul at xelerance.com
Wed Oct 10 12:04:11 EDT 2007
On Wed, 10 Oct 2007, Tonis wrote:
> I make the same mistake somewhere in recompilation
> of kernel but I don't know where.
>
> After every recompilation I cannot generate
> rsasigkey. The command "rsasigkey --verbose 1024 > key" stops
> at "getting 64 random bytes from /dev/random..."
>
> on a standard kernel delivered with a distribution (like slackware for instance),
> the generation works, but after recompilation it doesn't work anymore.
Then the random/entropy is not properly working on your system.
On embedded systems, getting entropy is hard, so on those it is possible that
generating a key would takes hours. In such cases, generate the key on another
system and copy the ipsec.secrets file on the embedded device.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list