5.4: Can't start ssh due to entropy source blocking?
Stephane Raimbault
stephane at enertiasoft.com
Thu Sep 1 15:45:35 PDT 2005
further more I just did another test and discovered that by setting
this sysctl back (seems like /etc/rc.d/sshd start set's it to 0)
sysctl -w kern.random.sys.seeded=1
I can do host and nslookup's again... however still the same problem
with /etc/rc.d/sshd start. I'm not sure where I've gone wrong, it's
was a pretty basic install, setup network, caching dns server, ntpd,
and now trying to get sshd running.
Any further thoughts or ideas?
Thanks,
Stephane
On 1-Sep-05, at 4:40 PM, Stephane Raimbault wrote:
> Thanks for the suggestion, but it doesn't seem to be the case in my
> situation.
>
> However I did notice things like nslookup and host are now
> reporting this error after attempting to start /etc/rc.d/sshd start
>
> # host www.freebsd.org
> Entropy device is blocking.
>
> # nslookup www.freebsd.org
> Entropy device is blocking.
>
>
> I confirmed by rebooting the server and making sure sshd didn't try
> to start on bootup nslookup and host are working, as soon as I try
> to start sshd, I start getting the errors.
>
> I am baffled as to what is going on.
>
> Thank you,
> Stephane
>
> On 1-Sep-05, at 2:58 PM, Kurt Buff wrote:
>
>
>> I ran into it just yesterday.
>>
>> I was walking a newb in our IT department through setting up a
>> server, and
>> he used all caps for the domain.tld portion of the server name -
>> testbed.ZETRON.COM.
>>
>> Had the same problem as you describe. Edited the /etc/rc.conf, had
>> him
>> reboot and try again, and it worked just fine.
>>
>> Kurt
>>
>>
>>
>>> -----Original Message-----
>>> From: owner-freebsd-stable at freebsd.org
>>> [mailto:owner-freebsd-stable at freebsd.org]On Behalf Of
>>> Stephane Raimbault
>>> Sent: Thursday, September 01, 2005 13:18
>>> To: Vivek Khera
>>> Cc: freebsd-stable at freebsd.org
>>> Subject: Re: 5.4: Can't start ssh due to entropy source blocking?
>>>
>>>
>>> yes sorry I wasn't more clear. I tried putting a bunch of junk on
>>> the screen as well as just left it blank and the result was the
>>> same. Is it possible I didn't provide enough junk? I haven't seen
>>> this behavior before?
>>>
>>> Thanks,
>>> Stephane
>>>
>>> On 1-Sep-05, at 2:07 PM, Vivek Khera wrote:
>>>
>>>
>>>
>>>>
>>>> On Sep 1, 2005, at 1:29 PM, Stephane Raimbault wrote:
>>>>
>>>>
>>>>
>>>>
>>>>> Type a full screenful of random junk to unblock
>>>>> it and remember to finish with <enter>. This will
>>>>> timeout in 300 seconds, but waiting for
>>>>> the timeout without typing junk may make the
>>>>> entropy source deliver predictable output.
>>>>>
>>>>> Just hit <enter> for fast+insecure startup.
>>>>>
>>>>>
>>>>>
>>>>>
>>>>
>>>> so what did you do, just hit enter or did you follow the
>>>> instructions and type a screenful of junk?
>>>>
>>>>
>>>> Vivek Khera, Ph.D.
>>>> +1-301-869-4449 x806
>>>>
>>>>
>>>> _______________________________________________
>>>> freebsd-stable at freebsd.org mailing list
>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
>>>> To unsubscribe, send any mail to "freebsd-stable-
>>>> unsubscribe at freebsd.org"
>>>>
>>>>
>>>>
>>>
>>> _______________________________________________
>>> freebsd-stable at freebsd.org mailing list
>>> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
>>> To unsubscribe, send any mail to
>>> "freebsd-stable-unsubscribe at freebsd.org"
>>>
>>>
>>>
>>
>>
>>
>>
>> _______________________________________________
>> freebsd-stable at freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
>> To unsubscribe, send any mail to "freebsd-stable-
>> unsubscribe at freebsd.org"
>>
>>
>
> _______________________________________________
> freebsd-stable at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to "freebsd-stable-
> unsubscribe at freebsd.org"
>
More information about the freebsd-stable
mailing list