> apache2 is taking a long time "generating secret for digest
> authentication". Bryan suggested the following fixes a little while
> back:
>
> 1. Use a hardware RNG (random number generator), some chipsets provide
> that but you need to enable support in the kernel.
> 2. emerge apr with USE=urandom. This makes apr use /dev/urandom
> instead of /dev/random. urandom isn't as strong cryptographically
> speaking as random but might be good enough for your use.
> 3. Disable digest authentication in the apache configuration.
> 4. Use some entropy gathering daemon like sys-apps/clrngd,
> media-sound/sound-entropyd or media-video/video-entropyd.
>
> I emerged and started clrngd and it seems to work nicely. I'd rather
> use a hardware RNG if I have one. Where in the kernel should I find
> RNG support?
make menuconfig->Device drivers->Character devices->Hardware Random Number
Generator Core support
Thanks Petr. I have this in the menu:
Intel/AMD/VIA HW Random Number Generator support
and it says:
This driver provides kernel-side support for the Random Number
Generator hardware found on Intel i8xx-based motherboards, AMD
76x-based motherboards, and Via Nehemiah CPUs.
lspci shows Intel numbers like these:
82845
82801
The new kernel is compiling now. Hopefully it will work.
- Grant
--
[email protected] mailing list
