martes, septiembre 22, 2009

PRNG is not seeded | ssh

After a long time using certain machines, I found the other day that I could not connect from one to another, even if they were in the same intranet.

When ssh-ing, I was seeing the message:
"PRNG is not seeded".
Never had seen this. What is PRNG is not obvious. You may think it stands for "Programming Rights for Nasty Gurus", but it actually is a Pseudo-Random Number Generator.

As openssl FAQ page says:

"Cryptographic software needs a source of unpredictable data to work correctly. Many open source operating systems provide a "randomness device" (/dev/urandom or /dev/random) that serves this purpose. All OpenSSL versions try to use /dev/urandom by default; starting with version 0.9.7, OpenSSL also tries /dev/random if /dev/urandom is not available."

So then you need to create that devices. With /dev/random should be enough at least in ubuntu.

#mknod /dev/random c 1 8

No hay comentarios: