Date: Thu, 1 Sep 2005 16:45:31 -0600 From: Stephane Raimbault <stephane@enertiasoft.com> To: Stephane Raimbault <stephane@enertiasoft.com> Cc: Vivek Khera <vivek@khera.org>, Kurt Buff <KBuff@zetron.com>, freebsd-stable@freebsd.org Subject: Re: 5.4: Can't start ssh due to entropy source blocking? Message-ID: <54BB9145-3838-4536-942C-8C4389A972C2@enertiasoft.com> In-Reply-To: <F106D376-B7DF-4C49-9423-CDDD9CFCB8B9@enertiasoft.com> References: <054222519C2ED411A68E00508B603AC70A3D08A4@zetxch01.zetron.com> <F106D376-B7DF-4C49-9423-CDDD9CFCB8B9@enertiasoft.com>
next in thread | previous in thread | raw e-mail | index | archive | help
further more I just did another test and discovered that by setting this sysctl back (seems like /etc/rc.d/sshd start set's it to 0) sysctl -w kern.random.sys.seeded=1 I can do host and nslookup's again... however still the same problem with /etc/rc.d/sshd start. I'm not sure where I've gone wrong, it's was a pretty basic install, setup network, caching dns server, ntpd, and now trying to get sshd running. Any further thoughts or ideas? Thanks, Stephane On 1-Sep-05, at 4:40 PM, Stephane Raimbault wrote: > Thanks for the suggestion, but it doesn't seem to be the case in my > situation. > > However I did notice things like nslookup and host are now > reporting this error after attempting to start /etc/rc.d/sshd start > > # host www.freebsd.org > Entropy device is blocking. > > # nslookup www.freebsd.org > Entropy device is blocking. > > > I confirmed by rebooting the server and making sure sshd didn't try > to start on bootup nslookup and host are working, as soon as I try > to start sshd, I start getting the errors. > > I am baffled as to what is going on. > > Thank you, > Stephane > > On 1-Sep-05, at 2:58 PM, Kurt Buff wrote: > > >> I ran into it just yesterday. >> >> I was walking a newb in our IT department through setting up a >> server, and >> he used all caps for the domain.tld portion of the server name - >> testbed.ZETRON.COM. >> >> Had the same problem as you describe. Edited the /etc/rc.conf, had >> him >> reboot and try again, and it worked just fine. >> >> Kurt >> >> >> >>> -----Original Message----- >>> From: owner-freebsd-stable@freebsd.org >>> [mailto:owner-freebsd-stable@freebsd.org]On Behalf Of >>> Stephane Raimbault >>> Sent: Thursday, September 01, 2005 13:18 >>> To: Vivek Khera >>> Cc: freebsd-stable@freebsd.org >>> Subject: Re: 5.4: Can't start ssh due to entropy source blocking? >>> >>> >>> yes sorry I wasn't more clear. I tried putting a bunch of junk on >>> the screen as well as just left it blank and the result was the >>> same. Is it possible I didn't provide enough junk? I haven't seen >>> this behavior before? >>> >>> Thanks, >>> Stephane >>> >>> On 1-Sep-05, at 2:07 PM, Vivek Khera wrote: >>> >>> >>> >>>> >>>> On Sep 1, 2005, at 1:29 PM, Stephane Raimbault wrote: >>>> >>>> >>>> >>>> >>>>> Type a full screenful of random junk to unblock >>>>> it and remember to finish with <enter>. This will >>>>> timeout in 300 seconds, but waiting for >>>>> the timeout without typing junk may make the >>>>> entropy source deliver predictable output. >>>>> >>>>> Just hit <enter> for fast+insecure startup. >>>>> >>>>> >>>>> >>>>> >>>> >>>> so what did you do, just hit enter or did you follow the >>>> instructions and type a screenful of junk? >>>> >>>> >>>> Vivek Khera, Ph.D. >>>> +1-301-869-4449 x806 >>>> >>>> >>>> _______________________________________________ >>>> freebsd-stable@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-stable >>>> To unsubscribe, send any mail to "freebsd-stable- >>>> unsubscribe@freebsd.org" >>>> >>>> >>>> >>> >>> _______________________________________________ >>> freebsd-stable@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-stable >>> To unsubscribe, send any mail to >>> "freebsd-stable-unsubscribe@freebsd.org" >>> >>> >>> >> >> >> >> >> _______________________________________________ >> freebsd-stable@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-stable >> To unsubscribe, send any mail to "freebsd-stable- >> unsubscribe@freebsd.org" >> >> > > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable- > unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?54BB9145-3838-4536-942C-8C4389A972C2>