Re: lack of boot-time entropy on arm64 ec2 instances

To: debian-cloud@lists.debian.org
Subject: Re: lack of boot-time entropy on arm64 ec2 instances
From: Noah Meyerhans <noahm@debian.org>
Date: Wed, 8 Jan 2020 16:31:40 -0500
Message-id: <[🔎] 20200108213140.GG31539@morgul.net>
In-reply-to: <[🔎] 20200108205004.krzsqtwtywvqbirk@vanvanmojo.kallisti.us>
References: <[🔎] 20200108194813.GD31539@morgul.net> <[🔎] 20200108205004.krzsqtwtywvqbirk@vanvanmojo.kallisti.us>

On Wed, Jan 08, 2020 at 12:50:04PM -0800, Ross Vandegrift wrote:
> I know of two other options:
> - pollinate
> - jitterentropy-rngd
> 
> pollinate downloads seeds remotely, which feels wrong - and itself may
> require random numbers.  I've never tried jitterentropy.

IMO these are roughly equivalent to haveged, in that they're userspace
accumulators of entropy that try to seed the kernel.  I think I prefer
haveged's approach, but I'm really not qualified to judge.

Reply to:

References:
- lack of boot-time entropy on arm64 ec2 instances
  - From: Noah Meyerhans <noahm@debian.org>
- Re: lack of boot-time entropy on arm64 ec2 instances
  - From: Ross Vandegrift <rvandegrift@debian.org>

Prev by Date: Re: lack of boot-time entropy on arm64 ec2 instances
Next by Date: Re: lack of boot-time entropy on arm64 ec2 instances
Previous by thread: Re: lack of boot-time entropy on arm64 ec2 instances
Next by thread: Re: lack of boot-time entropy on arm64 ec2 instances
Index(es):
- Date
- Thread