[Git][NTPsec/ntpsec][master] ntpkeygen: add entropy warnings.
Gary E. Miller
gitlab at mg.gitlab.com
Thu Jan 5 00:26:06 UTC 2017
Gary E. Miller pushed to branch master at NTPsec / ntpsec
Commits:
fc449de9 by Gary E. Miller at 2017-01-04T16:25:33-08:00
ntpkeygen: add entropy warnings.
- - - - -
1 changed file:
- docs/includes/ntpkeygen-body.txt
Changes:
=====================================
docs/includes/ntpkeygen-body.txt
=====================================
--- a/docs/includes/ntpkeygen-body.txt
+++ b/docs/includes/ntpkeygen-body.txt
@@ -41,6 +41,12 @@ systems, as NFS clients may not be able to write to the shared keys
directory, even as root. In this case, NFS clients can specify the files
in another directory such as +/etc+ using the _keysdir_ command.
+WARNING: +ntpkeygen+ uses the system randomness source. On a POSIX
+system this is usually /dev/urandom. Immediately after a reboot, on any
+OS, there may not be sufficient entropy available for this program to
+perform well. Do not run this program from any startup scripts. Only
+run this program on an active host with a lot of available entropy.
+
[[access]]
== Key file access and location ==
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/fc449de90a9045aab67c936df875640105404b39
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20170105/750863b2/attachment.html>
More information about the vc
mailing list