On 01-Aug-22 18:29, Grant Taylor wrote:
Or my favorite: entropybroker + a hardware entropy source (or two). There are USB keys; I currently use a RPi (cpu has a hardware source); recent Intel CPUs also have one. If you use multiple sources, you don't have to worry about one being defective/compromised...On 8/1/22 4:21 PM, Greg Choules via bind-users wrote:Off the top of my head, could it be this?random-device ... BIND will need a good source of randomness for crypto operations.Drive by plug: If it is lack of entropy, try installing and running Haveged. At least as a troubleshooting aid.
Timothe Litt ACM Distinguished Engineer -------------------------- This communication may not represent the ACM or my employer's views, if any, on the matters discussed.
OpenPGP_signature
Description: OpenPGP digital signature
-- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
