[ALUG] Entropy on virtual machines
Howard Frederick
simbamangu at gmail.com
Sun Dec 15 14:54:59 EAT 2013
That is really interesting - and worrying. So many websites are run as
virtual machines (perhaps even a majority) - does that mean that their SSL
keys may be seeded with the same data?
On 14 Dec 2013 21:32, "Andreas Tauscher" <ta at geuka.net> wrote:
> is low.
> I just faces the problem the regeneration of SSL parameters took ages.....
> On virtual machines the randomness is low. Since all hardware is virtual
> there is no real source for the random number generator of the kernel.
> Install the rng-tools and add (Debian/Ubuntu) in /etc/default/rng-tools:
> HRNGDEVICE=/dev/urandom
> and restart the rng-tools.
> Creating keys goes now really fast. It is speeding up it even on real
> hardware if there is no hardware random numbers generator.
>
> Andreas
> _______________________________________________
> The Arusha Linux User Group: http://unix.or.tz
> Linux mailing list
> Linux at lists.habari.co.tz
> http://lists.habari.co.tz/cgi-bin/mailman/listinfo/linux
>
> The Arusha LUG mailing list is generously hosted by Habari Node Ltd:
> http://www.habari.co.tz/
>
> The above comments and data are owned by whoever posted them (including
> attachments if any). The mailing list host is not responsible for them in
> any way.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.habari.co.tz/pipermail/linux/attachments/20131215/f7a5a7f9/attachment.html>
More information about the Linux
mailing list