rndc-confgen -a goes off forever
Matthew Seaman
m.seaman at infracaninophile.co.uk
Fri Jan 30 07:34:27 PST 2004
On Fri, Jan 30, 2004 at 10:22:14AM -0500, stan wrote:
> I'm trying to set up bind 9 on a 4.9 STABLE machine.
>
> Looking in theprots message file, it says tehat I need to generate a source
> of random numberes by using rndc-confgen -a. When I type this command, it
> never returns (It's been linke 10 minutes). and to shos that it's not using
> any CPU cycles. I am running this as root.
>
> What am I doing wrong?
Actually it says you need to set up a source of randomness /so that/
rndc-confgen will work in a reasonable amount of time.
Take a look at rndcontrol(8) and then at the output of
vmstat -i
so that you can choose two or three interrupts that occur relatively
frequently and enable those as feeds for the entropy source. Nb.
don't try enabling the clk or rtc interrupts for this purpose: those
tick at regular intervals, and the whole point is to exploit the
random spacing between interrupts. Use rndcontrol(8) to turn on the
entropy harvesting, and then leave the system to work for a while and
gather a bit of entropy. After that rndc-confgen(8) should work fine.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040130/41a918a6/attachment-0001.bin
More information about the freebsd-questions
mailing list