where to set/override entropy $random_file location?

[Steve Rikli <sr%genyosha.net@localhost>]

What is the right method to set or override the location of the entropy
$random_file as used by /etc/rc.d/random_seed , if I want to put it
somewhere other than the default?

The /etc/rc.d/random_seed script sets:

  random_file="${random_file:-/var/db/entropy-file}"

and there is a setting for it in /etc/defaults/security.conf :

  random_file=/var/db/entropy-file

That led me to think /etc/security.conf was the right place for a local
override, since security.conf(5) also describes it:

  random_file    Name of the entropy seed file used at boot.  Default is
                 /var/db/entropy-file as used by /etc/rc.d/random_seed.
                 Set random_file to empty to disable saving a seed every
                 time /etc/security runs.

So e.g. to put the entropy file in /etc/ instead of /var/db/ I tried
setting random_file=/etc/entropy-file in /etc/security.conf but it had
no effect.

I then tried it in /etc/rc.conf instead and it worked.

FYI I also use the same path for rndseed keywords in boot.cfg(5).

So I have a working setup if needed, but I think there's a disconnect
in how/where $random_file is set, or documentation, or both.  From the
man page it seems like /etc/rc.d/random_seed is intended to source
/etc/security.conf but it's apparently not happening.

I'm using 10.1 amd64 for this, but confirmed the same behavior on a
11.0_BETA system too.

Cheers,
sr.