Questions tagged [entropy-pool]

Question 1

I am having trouble running Solr 9.2 on the above virtual machine (Rhel9.1 on Azure, image from CIS). The problem is low entropy as seen in the logs below: Started Apache Solr 9. Java 17 detected. ...

Question 2

I have a problem with an old laptop. I have installed a debian 11 operating system on it a year ago, and despite using it almost daily to perform network administration, I recently found its available ...

Question 3

Whenever I cat /proc/sys/kernel/random/entropy_avail inside my Docker containers (Linux 5.10 based), I get a double-digit result, which is apparently laughably low. Supposedly anything below 4 digits ...

Question 4

I tried to gain a bit of understanding about how SSL/TLS works and had a look at the TLS handshake in TLS 1.2 and TLS 1.3, and where random numbers from the server come into play there. Since every ...

Question 5

I'm planning to set up periodic checks for system health on a multiple remote systems. To achieve this I've set up key-based authentication to execute scripts on remote side without interaction i.e.: ...

Question 6

The man page for rngd on Linux says -o (/dev/random) is used for random number output while -r (/dev/hwrng) for random number input. What does this mean? How do these device files differ and why are ...

Question 7

When no radioactive decay is available and good entropy is strongly advised for security reasons you experience a real problem. HTTPS connections consume a lot of entropy. If you have thousands of ...

Question 8

I'm trying out coreos on a kubernetes cluster. This setup includes a bind server serving DNSSEC responses. Because of the DNSSEC key management, the bind server uses up all the available entropy and ...

Question 9

I'm looking for the method used by EJBCA to generate the private keys in general (CA, Sub-Ca, certificates...). Let say for instance you want RSA 2048 key size. Is the generation process all done in ...

Question 10

I am trying to figure out how to install haveged on Cloud Linux. It doesn't seem to be avail in the repo, and trying to a do a make install does not work. My question is: Is haveged compatible with ...

Question 11

I am thinking my entropy level may be low? $ cat /proc/sys/kernel/random/entropy_avail I am around 132-178 on average. Pool size is default 4096 (this is a container on a virtualizer by the way). I ...

Question 12

I'm trying to understand the linux kernel parameters which are under /proc/sys/kernel/random/, but I have some troubles. Could you help me figure some things out? What is the boot_id parameter used ...

Question 13

I recently had my first encounter with a depleted entropy pool, and I was disappointed to learn that none of the usual system logs were helpful in discovering the problem. After installing CUPS on a ...

Question 14

Is there any simple way of monitoring the amount of available entropy (random data) on windows? I'm using Windows server 2008R2 and apache+ssl on vmware, and I'm a bit worried about starving the ...

Question 15

Recently we ran into a problem where one of our Linux-based virtual machines was really slow due to a chronic shortage of "entropy". I'm wondering if Windows virtual machines would suffer from the ...

Question 16

Since a reboot yesterday, one of our virtual servers (Debian Lenny, virtualized with Xen) is constantly running out of entropy, leading to timeouts etc. when trying to connect over SSH / TLS-enabled ...

Question 17

Is there any tool that would allow me to audit or check if everything is all right concerning my SSL Handshake ? I personally found it is a bit slow, but I really don't know if it's just me. I am ...

Question 18

I have several Entropy Keys with egd in front of them and then all load balanced by haproxy. I then have many client machines using the haproxy service IP as a network source of entropy. I have no ...

Question 19

I am looking at connecting in a reasonably secured way mobiles to an enterprise WiFi network. The current solutions would be user certificates on the mobiles (they are unfortunately exportable) or ...

Question 20

In my Apache configuration I have these lines: SSLRandomSeed connect builtin SSLRandomSeed connect file:/dev/random SSLRandomSeed connect file:/dev/urandom 1024 How, exactly, does Apache interpret ...

Question 21

As you might know that it's not as easy to generate entropy on a virtual machine as on a "normal" pc. Generating a gpg-key on a virtual machine can take a while, even with the correct tools. There ...

Question 22

RHEL 5.x has an entropy-generation problem (held-over from kernel 2.4). Following directions from here has produced little-to-no results: How to increase entropy pool on a 2.6 kernel RHEL/Fedora ...

Question 23

I recently mounted a new partition and moved /home and /var/lib/mysql to the new drive and did a symlink to them. Now I've noticed that the entropy (using munin) has dropped from around 3000 to ...

Question 24

I'm interested in generating secret keys for SSL on virtual machines using true randomness. By true randomness I mean the same level of entropy that can be generated by UNIX's dev/random and entropy ...

Question 25

If I run this command in Ubuntu sudo cat /proc/sys/kernel/random/entropy_avail it returns a number that indicates how much "entropy" is available to the kernel, but that's about all I know. What unit ...

Question 26

We have has a little trouble with a small box that acts as a VPN end-point and mail relay for our network, caused by the available entropy for /dev/random being too low (which causes TLS connection ...

Question 27

Having just configured Munin for statistics logging on my gentoo server (hardened profile), I am noticing that my "Available entropy" is consitently in the 200-300 range. This seems way to low, so I ...

Stack Exchange Network

Questions tagged [entropy-pool]

How can I increase entropy in a Rhel 9.1 virtual machine running on Azure with the Rhel image hardened by the Centre for Internet Security?

Debian 11 - Low entropy (256) even with Haveged and rng-tools on old laptop

How to get enough entropy into Docker containers?

Can SSL/TLS deplete the entropy pool of my server?

Is it safe to use SSH for periodic command execution on remote Server regarding usage of entropy?

what's the difference between random number input device versus output device?

How to gather in a save, cheap and easy way high quality entropy on a Linux machine? [closed]

Increasing Entropy on CoreOS

How EJBCA generate private key

Haveged on Cloud Linux

Low Entropy on Container

Some questions about kernel.random.* parameters

How can I detect incidents of entropy depletion?

Windows server 2008R2: Monitoring the amount of available entropy

Do Windows virtual machines suffer from entropy shortage too?

Server suddenly running out of entropy

ssl handshake - not sure if slow

How to tell when an Entropy Key is overloaded?

Which password entropy for MS-CHAPv2

How does Apache interpret multiple SSLRandomSeed sources

Entropy on virtual machines

How to fix the entropy pool issue with RHEL 5.x

Low entropy on CentOS 5 after new mount

Distributing entropy to virtual machines

Explain in Plain English about Entropy Available

Feeding the kernels entropy source from other machines and/or increasing its maximum size

Munin "Available entropy" when using address space layout randomization

Hot Network Questions