[Help-gnutls] Alternate random device for certtool

Teran McKinney sega01 at gmail.com
Thu Nov 27 20:10:55 CET 2008


I am using libgcrypt 1.4.3, and I'm quite cetain that all of Gnutls'
libraries are up to date. Could this possibly a bug with not building
without Linux capabilities support? I have been testing with Arch
Linux, and more so, my fork of Arch Linux, Icadyptes. I noticed that
libgpg-error was out of date (1.6 instead of 1.7), so I updated it and
rebuilt libgcrypt; this had no effect.

Here are some of the related buildscripts:
ftp://icadyptes.go-beyond.org/icadyptes/abs/core/base/libgcrypt/PKGBUILD
ftp://icadyptes.go-beyond.org/icadyptes/abs/core/lib/gnutls/PKGBUILD

Thanks,
Teran (sega01)

On Thu, Nov 27, 2008 at 18:49, Daniel Kahn Gillmor
<dkg at fifthhorseman.net> wrote:
>> I ssh into the systems that I would need to do this on, and most are
>> headless. I noticed how easy it was to generate data for /dev/random
>> by moving the mouse, but without it generating entropy is much more
>> difficult.
>
> Agreed!  Sometimes running "find / >/dev/null" thrashes the disks
> enough to give a bit of randomness.  But it would be nice if there was
> a clear place that documents ways to feed the entropy pool on headless
> machines.
>
>> PS: I have checked this with two different distributions, though one
>> is a fork of the other (however it is quite different and completely
>> rebuilt). I have the same effect on both.
>
> What distros are you testing this on, specifically?
>
> I suspect that Simon's suggestion about gcrypt versions is on the
> right track.  I'm using 1.4.1-1 on debian lenny.
>
>      --dkg
>
> _______________________________________________
> Help-gnutls mailing list
> Help-gnutls at gnu.org
> http://lists.gnu.org/mailman/listinfo/help-gnutls
>
>





More information about the Gnutls-help mailing list