I'm running several Dachstein 1.02 boxes doing IPSEC. I've been using
shared secrets and wanted to go to 509 certs. I have been able to generate
one 2048 bit key but the other machines just sit trying to get 128 random
bytes from /dev/random. I let one sit for two days before killing the
process.
I'm running several Dachstein 1.02 boxes doing IPSEC. I've been using
shared secrets and wanted to go to 509 certs. I have been able to generate
one 2048 bit key but the other machines just sit trying to get 128 random
bytes from /dev/random. I let one sit for two days before killing the
Just an odd thought...
For routers, perhaps one could use random packets to provide the random
data for /dev/random?
Well, I told you it was an odd thought.
- Jon
Charles Steinkuehler wrote:
I'm running several Dachstein 1.02 boxes doing IPSEC. I've been using
shared secrets and
: [Leaf-user] RSASIGKEY Problems
I'm running several Dachstein 1.02 boxes doing IPSEC. I've been using
shared secrets and wanted to go to 509 certs. I have been able to generate
one 2048 bit key but the other machines just sit trying to get 128 random
bytes from /dev/random. I let one sit for two
Just an odd thought...
For routers, perhaps one could use random packets to provide the random
data for /dev/random?
Well, I told you it was an odd thought.
Probably not a good idea. You want guaranteed randomness mainly for
security. Sending random data over the wire kind of defeats this,