tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: default sshd host keys



On Wed, 05 Sep 2012 00:25:20 -0400, Matthew Mondor wrote:
> 
> I think this could be a problem at first boot, but netbsd-6 also seems
> to now have /etc/rc.d/random_seed.  However this might be disabled by
> default, because I seem to lack /var/db/entropy-file on a local netbsd-6
> system here (and no mention of it in rc.conf(5))...

Yes, AFAICS it requires at least a modification to /boot.cfg to be in use 
(eg "rndseed /var/db/entropy-file;" before "boot /netbsd.gz"). It is 
mentioned in boot.cfg(5) and seems to integrate with rndctl(8), and the 
rnd(9) kernel subsystem of course.

Should the example in boot.cfg(5) be updated?

HTH,
-- 
khorben



Home | Main Index | Thread Index | Old Index