[Git][NTPsec/ntpsec][master] ntpkeygen: add entropy warnings.

Gary E. Miller gitlab at mg.gitlab.com
Thu Jan 5 00:26:06 UTC 2017

Gary E. Miller pushed to branch master at NTPsec / ntpsec

fc449de9 by Gary E. Miller at 2017-01-04T16:25:33-08:00
ntpkeygen: add entropy warnings.

- - - - -

1 changed file:

- docs/includes/ntpkeygen-body.txt


--- a/docs/includes/ntpkeygen-body.txt
+++ b/docs/includes/ntpkeygen-body.txt
@@ -41,6 +41,12 @@ systems, as NFS clients may not be able to write to the shared keys
 directory, even as root. In this case, NFS clients can specify the files
 in another directory such as +/etc+ using the _keysdir_ command.
+WARNING: +ntpkeygen+ uses the system randomness source.  On a POSIX
+system this is usually /dev/urandom.  Immediately after a reboot, on any
+OS, there may not be sufficient entropy available for this program to
+perform well.  Do not run this program from any startup scripts.  Only
+run this program on an active host with a lot of available entropy.
 == Key file access and location ==

View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/fc449de90a9045aab67c936df875640105404b39
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20170105/750863b2/attachment.html>

More information about the vc mailing list