Re: lack of entropy

To: debian-isp@lists.debian.org
Subject: Re: lack of entropy
From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
Date: Wed, 15 Nov 2006 09:46:17 +0100
Message-id: <[🔎] 20061115084616.GA17206@fantomas.sk>
Mail-followup-to: debian-isp@lists.debian.org
In-reply-to: <[🔎] 1243640697.20061113150617@marki-online.net>
References: <[🔎] 1172005926.20061113130440@marki-online.net> <[🔎] 20061113134315.GA29081@fantomas.sk> <[🔎] 1243640697.20061113150617@marki-online.net>

> Monday, November 13, 2006, 14:43:15, you wrote:
> > use /dev/urandom for entropy reading

On 13.11.06 15:06, Marek Podmaka wrote:
>   I know that using /dev/urandom doesn't block. But it's me who is
>   using it. I suppose that it is either apache-ssl (but only http
>   vhosts are configured now), php5 or mysql5. Only this is using the
>   system (and very little outgoing mail and ftp transfers). So I have
>   no idea how to change it (and linking /dev/random to /dev/urandom is
>   a bad idea I think :)

apache.conf:

SSLRandomSeed startup file:/dev/urandom 512
SSLRandomSeed connect file:/dev/urandom 512

php.conf:

session.entropy_file = /dev/urandom

for ssl (I guess) /etc/ssl/openssl.cnf:
RANDFILE = /dev/urandom

dunno about the MySQL, it may use SSL library, use the above.

-- 
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P)eople's (A)dvertising (M)ethod

Reply to:

References:
- lack of entropy
  - From: Marek Podmaka <marki@onee.sk>
- Re: lack of entropy
  - From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
- Re: lack of entropy
  - From: Marek Podmaka <marki@marki-online.net>

Prev by Date: Re: lack of entropy
Next by Date: Re: lack of entropy
Previous by thread: Re: lack of entropy
Next by thread: Re: lack of entropy
Index(es):
- Date
- Thread