Author Topic: Providing Random Entropy  (Read 2058 times)

Offline rgmhtt

  • Full Member
  • ***
  • Posts: 195
  • Karma: +4/-1
    • View Profile
Providing Random Entropy
« on: June 02, 2017, 07:38:48 pm »
Random entropy is required for both servers and clients using any crypto protocol.

At least on Fedora/Centos you can check your available entropy with:

cat /proc/sys/kernel/random/entropy_avail

This SHOULD be at least 2000.  Depending on your software you may constantly be using this, or only as a send to a PRF.

First thing to try is install rng-tools.  On the CubieTruck, this can get avail entropy up to 1500.

The best thing to do is install haveged.

See my write up on this at:

http://www.htt-consult.com/Centos7-armv7.html#RANDOMNESS
« Last Edit: March 05, 2018, 04:59:14 pm by rgmhtt »