On Tue, Apr 16, 2019 at 11:45:08PM +0200, Cyril Brulebois wrote: >Cyril Brulebois <k...@debian.org> (2019-04-16): >> The former was on my list of things to try; thanks for mentioning the >> latter.
... >My initial thought would be to launch it on demand when one is about to >get to wget calls that needs HTTPS; but we could probably benefit from >it in case HTTP is requested but redirections to HTTPS happens… There >are also the obvious keypair generations mentioned above. But then over >time maybe some other operations could be needing entropy (the >cryptsetup case is discussed in a separate thread[1]). > > 1. https://lists.debian.org/debian-boot/2019/04/msg00153.html > >So it might be best to start it unconditionally at start-up? I'd go with that, yes. What's the down-side? I'm also pondering doing something similar with "udevadm monitor" - start it unconditionally, logging to the installer syslog. It'd be a good extra bit of debug to have. -- Steve McIntyre, Cambridge, UK. st...@einval.com Google-bait: http://www.debian.org/CD/free-linux-cd Debian does NOT ship free CDs. Please do NOT contact the mailing lists asking us to send them to you.
