search for: prngd

Hi, I use openssh-2.9p2 on an i386 LynxOS system. Since LynxOS does not have support for /dev/[u]random, I installed openssh with prngd support. It so happened by accident on installation that prngd.conf got truncated to zero size. With prngd running as such, ssh-keygen just hangs. I notice similar case with sshd, ssh, ... as all these depend on prngd for random number. SMMEstack# /usr/sbin/sshd -d -d -d debug1: Seeding random num...

I have a need to have the same OpenSSH binaries run on multiple machines which are administered by different people. That means on Solaris, for example, there will be some with /dev/random, some on which I can run prngd because they'll be installing my binaries as root, and some which will have neither because they will be only installed as non-root. Below is a patch to enable choosing all 3 possible sources at compile time, with the available source selected at run time. If no configure parameters are given...

Hi! I have just made the 0.9.0 release of PRNGD available. PRNGD is the Pseudo Random Number Generator Daemon. It has an EGD compatible interface and is designed to provide entropy on systems not having /dev/*random devices. Software supporting EGD style entropy requests are openssh, Apache/mod_ssl, Postfix/TLS... Automatic querying of EGD soc...

[NOTE: I'm new to this list and this is my first approach to OpenSSH code.] I've enhanced "--with-prngd-port=PORT" flag to accept an optional hostname as in "myhost:myport", e.g.: % ./configure --with-prngd-port=example.com:12345 Although I'm certain that this may cause big trouble if remote gatherer isn't online (ssh will refuse to open any connection) I think it's an...

...consistent regularity. It's triggered by a high number of connections coming into sftp/ssh at the same time. It affects additional connections and leaves the failed connect attempts open for days in a TCP_WAIT state. We're seeing the error in the system logs: openssh session hanging - prngd[671]: write() in socket_write() failed: Broken pipe This appears to be an issue that has been an unresolved problem with prngd since 2002. Some have attributed the problem to prngd version 0.9.26 (2004) but we are seeing it with version 0.9.25 (30 May 2002) as have others that we've seen...

Now that ssh-rand-helper has been segregated into a separate program, I'd like to revisit an old question about its entropy gathering. - would it be desirable to make it possible for ssh-rand-helper to fall back to external commands if PRNGD cannot be reached, instead of choosing one or the other at compile time? - When using PRNGD, the program gets 48 bytes of entropy from PRNGD, stirs it into OpenSSL's RAND_add(), and outputs 48 bytes of pseudorandom bytes based on this entropy. Does this present any advantage over just...

Hi. I recently snookered myself: I build OpenSSH on an old box that didn't have /dev/random, but happened to be running prngd at the time for other reasons. Because I wanted to use commands, I configured --with-rand-helper, however configure found the prngd socket and built ssh-rand-helper to use it exclusively. Next reboot: no prngd, no random seed, no sshd. Do not log in, do not pass "Go", do not colle...

...generate the keys by running /etc/init.d/openssh.server script, which is essentially functioning like /etc/init.d/opensshd. When I run the /etc/init.d/opensshd, I get the following errors: Installation of <OpenSSH> was successful. # cd /etc/init.d/ # ./opensshd start Couldn't connect to PRNGD socket "/var/run/egd-pool": No such file or directory Entropy collection failed ssh-rand-helper child produced insufficient data Couldn't connect to PRNGD socket "/var/run/egd-pool": No such file or directory Entropy collection failed ssh-rand-helper child produced insuffici...

http://bugzilla.mindrot.org/show_bug.cgi?id=953 Summary: openssh session hanging - prngd[671]: write() in socket_write() failed: Broken pipe Product: Portable OpenSSH Version: 3.7.1p2 Platform: Sparc OS/Version: Solaris Status: NEW Severity: normal Priority: P2 Component: ssh As...

I upgraded from OpenSSH_3.0.2p1 to OpenSSH 3.4p1. Starting SSHD or ssh-keygen I'm getting the "PRNG is not seeded". I have verified that prngd is running and "egc.pl /var/spool/prngd/pool get" runs just fine reporting 32800 bits of entropy. My platform is Solaris 8 (sparc) and I downloaded binaries from www.sunfreeware.com. My guess is the build of OpenSSH 3.4.p1 is looking for prngd in a different location than my configurat...

...lper': No such file or directory ssh-rand-helper child produced insufficient data" This sounds like: 1. It really cant find the specified path/filename but then how did the second part occur, that being: "ssh-rand-helper child produced insufficient data" It also sounds like prngd is not doing its job but I have sat in on the build and watched it start up in a cmd tool window while the client builds. This only happens when I use a script (!) and again, it only happens here at home on this sparc20. (Did I say that already?) :) After the client finishes building, I can man...

...OS/Version: All Status: NEW Severity: normal Priority: P2 Component: Documentation AssignedTo: unassigned-bugs at mindrot.org ReportedBy: pepper at reppep.com http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/INSTALL says: --with-prngd-socket=/some/file allows you to enable EGD or PRNGD support and to specify a PRNGd socket. Use this if your Unix lacks /dev/random and you don't want to use OpenSSH's builtin entropy collection support. --with-prngd-port=portnum allows you to enable EGD or PRNGD support and to specify a EG...

http://bugzilla.mindrot.org/show_bug.cgi?id=361 Summary: PRNGD not yet seeded & SSH banner stills show previous banner Product: Portable OpenSSH Version: -current Platform: Sparc OS/Version: Solaris Status: NEW Severity: normal Priority: P3 Component: ssh...

...com> > Cc: Ed Phillips <ed at UDel.Edu> > Subject: Re: Entropy and DSA key > > On Tue, 06 Nov 2001 10:54:12 EST, Dave Dykstra writes: > > > On Mon, 5 Nov 2001, Ed Phillips wrote: > > > > > > > Is there any way to compile openssh so that it will use prngd, but if it' > > s > > > > not answering, use the compiled-in prng-like routines? > > > > In addition to Dan Astoorian's suggestion, you could try my patch which is > > in the mailing list archive in a thread beginning at > > > > http://mar...

I am running openssh 3.4p1 and had everything working fine, but then we had to upgrde the openssl. So did the same steps now openssh is not seeing prngd. We configure openssh with : --with-prngd-socket=/var/spool/prngd/pool this is what we saw with openssl-0.9.6g when I configured it: OpenSSH has been configured with the following options: User binaries: /usr/local/bin System binaries: /usr/local/sbin...

Hi, On Wed, Mar 07, 2001 at 10:05:07AM +1100, Damien Miller wrote: > > now to patching openssh to actually *use* prngd/socket... :-) > Was done last week - use the "--with-prngd-port=XXX" configure option. OpenSSH + PRNGD + SCO3 seem to work nicely. Thanks! One other thing: I'm not fully convinced that current OpenSSH does everything right regarding utmp/wtmp on SCO3 yet (ttys have been allocat...

----- Forwarded message from bugzilla-daemon at mindrot.org ----- From: bugzilla-daemon at mindrot.org To: dwd at bell-labs.com Subject: [Bug 13] New: Need faster ssh startup when no /dev/random or prngd available Date: Sat, 10 Nov 2001 04:25:32 +1100 (EST) http://bugzilla.mindrot.org/show_bug.cgi?id=13 Summary: Need faster ssh startup when no /dev/random or prngd available Product: Portable OpenSSH Version: -current Platform: All...

Hi! I have just uploaded version 0.9.28 of prngd. It does fix a hang in an endless loop under certain conditions. I have never seen this myself on HP-UX but I have received some reports, more or less all from Solaris 8 users, one of which finally lead to the correct analysis. Problem: after calling waitpid(), errno is evaluated for the case of wa...

http://bugzilla.mindrot.org/show_bug.cgi?id=953 ------- Additional Comments From stanislaw.walczak at sympatico.ca 2004-12-17 09:16 ------- I run it only for 10 minutes "openssl rand -base64 20480" - did not hang or abort. Security group said no for prngd 0.9.25 upgrade. Could you please tell me more about prngd bug ? what the symptoms are ? ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

...What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED ------- Additional Comments From dtucker at zip.com.au 2004-02-10 14:17 ------- I think your OpenSSL has found the prngd socket and considers itself to be "self-seeded". This would cause OpenSSH's random helper (which is what uses the prngd socket) to not be built at all. When you configure OpenSSH, what do the "Random number source:" and "ssh-rand-helper collects from" lines on th...