experimental lsh-util (ssh) debs, kerberos and entropy probs
I made some experimental lsd debs, they are at
http://people.debian.org/~bug1/hurd/
To compile them i had to --disable-kerberos support, for a proper deb
package there are a few ways to aproach it
- Special case the hurd build so it doesnt compile with kerberos support
and others do.
- Try and make two seperate lsh* debs across all platforms, with and
without kerberos support.
- Port kerberos to the hurd.
The last option would be the hardest, i dont know enough about kerberos to
know if it would justify the effort right now.
To use the debs it will try and create a random key with a program called
lsh-create-seed, i couldnt get that to work but copying one across from my
linux machine worked, and the lshd server seems to be working fine.
Having a bit of a look at lsh-create-seed it gets some intitial entropy
from the environment by tring to run a combination of netstat, ntptrace,
snmp-request mpstat, w, df, portstat and iostat, after that it gets
entropy via the keyboard.
Only w and df work under the hurd, so it doesnt get to the keyboard stage,
i tried using the --sloppy option that doesnt have a prequesit on the
amount of data from the first source, but it locked my machine up.
netstat would be a good one to get working but net-tools doesnt look very
portable.
The way its setup i think would be easy to modify it to get input from
some other sources if they exist, any sugggestions ?
Glenn
Reply to: