From owner-freebsd-questions@FreeBSD.ORG Fri Jan 30 07:44:00 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7EAA116A4CE for ; Fri, 30 Jan 2004 07:44:00 -0800 (PST) Received: from mail3.panix.com (mail3.panix.com [166.84.1.74]) by mx1.FreeBSD.org (Postfix) with ESMTP id B6BAE43D45 for ; Fri, 30 Jan 2004 07:43:56 -0800 (PST) (envelope-from stanb@panix.com) Received: from panix.com (brillig.panix.com [166.84.1.76]) by mail3.panix.com (Postfix) with ESMTP id 0D9A998298; Fri, 30 Jan 2004 10:43:55 -0500 (EST) Received: from teddy.fas.com (pcp01010374pcs.mplsnt01.sc.comcast.net [68.58.176.69]) by panix.com (Postfix) with ESMTP id B37AF2AA0E; Fri, 30 Jan 2004 10:43:53 -0500 (EST) Received: from stan by teddy.fas.com with local (Exim 3.36 #1 (Debian)) id 1AmaoC-00054M-00; Fri, 30 Jan 2004 10:43:52 -0500 Date: Fri, 30 Jan 2004 10:43:52 -0500 From: stan To: Free BSD Questions list Message-ID: <20040130154352.GA19457@teddy.fas.com> Mail-Followup-To: Free BSD Questions list , Matthew Seaman References: <20040130152214.GA18353@teddy.fas.com> <20040130153350.GA78931@happy-idiot-talk.infracaninophile.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040130153350.GA78931@happy-idiot-talk.infracaninophile.co.uk> X-Editor: gVim X-Operating-System: Debian GNU/Linux X-Kernel-Version: 2.4.23 X-Uptime: 10:41:53 up 25 days, 21:45, 1 user, load average: 0.02, 0.08, 0.08 User-Agent: Mutt/1.5.4i Sender: Stan Brown Subject: Re: rndc-confgen -a goes off forever X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Jan 2004 15:44:00 -0000 On Fri, Jan 30, 2004 at 03:33:50PM +0000, Matthew Seaman wrote: > On Fri, Jan 30, 2004 at 10:22:14AM -0500, stan wrote: > > I'm trying to set up bind 9 on a 4.9 STABLE machine. > > > > Looking in theprots message file, it says tehat I need to generate a source > > of random numberes by using rndc-confgen -a. When I type this command, it > > never returns (It's been linke 10 minutes). and to shos that it's not using > > any CPU cycles. I am running this as root. > > > > What am I doing wrong? > > Actually it says you need to set up a source of randomness /so that/ > rndc-confgen will work in a reasonable amount of time. > > Take a look at rndcontrol(8) and then at the output of > > vmstat -i > > so that you can choose two or three interrupts that occur relatively > frequently and enable those as feeds for the entropy source. Nb. > don't try enabling the clk or rtc interrupts for this purpose: those > tick at regular intervals, and the whole point is to exploit the > random spacing between interrupts. Use rndcontrol(8) to turn on the > entropy harvesting, and then leave the system to work for a while and > gather a bit of entropy. After that rndc-confgen(8) should work fine. Thanks for your help here. Again :-) -- "They that would give up essential liberty for temporary safety deserve neither liberty nor safety." -- Benjamin Franklin