I am fairly familiar now with how to configure using either egd or prngd
because I have been trying to get this to work for weeks now. It was last
configured with prngd and I tested prgnd with egc.pl /var/run/egd-pool read
255 and that worked fine. I ran truss, which watches library calls and
other things (ports accessed, permissions on open files, etc.) and saw it
get to the point where it just cycles through the getpid() and time()
forever. If I kill -1 ssh-keygen (yes, ssh-keygen) it skips past the dsa
key generation and completes the rsa key generation fine. I would need to
know from the code or somebody familiar with the code why it might be
cycling through these two function calls forever.
David
-----Original Message-----
From: Lutz Jaenicke [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 25, 2001 9:17 AM
To: '[EMAIL PROTECTED]'
Subject: Re: STILL can't genereate openssh dsa key
On Fri, May 25, 2001 at 08:47:18AM -0400, David Edward Shapiro wrote:
> I am stuck. I installed the latest zlib, openssl, and openssh 2.9.x and
> prngd and egd on solaris 2.7 that had previously been running sshd2. I
can
> not make dsa keys. A truss on the ssh-key command that make install runs
> shows it cycling through getpid() and time() forever. I tried egd first,
> and then prgnd next in hopes that those would fix the problem. I have no
> clue what to do from here. Has anybody seen this and what did you do? I
> copied another openssh dsa key from another system where I generated it,
but
> it did not work. I really want to get the issue resolved with why it can
> not generate dsa keys. The openssh dsa keys do not seem to have host name
> in them.
To find out why the ssh-key command runs through getpid() and time() would
probable need utilization of a debugger, stepping through it.
Anyway: I suppose you are talking about ssh-keygen (with 'gen' at the end).
The choice of the entropy source is made at "configure" time, so installing
EGD/PRNGD after configure/make does not change the binaries.
The actual choice is listed at the end of the "configure" run. Please make
sure that all data are correct.
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
