It is NOT a bug. In order to generate SECURE keys, dnssec-keygen reads /dev/random, which will block until there's enough entropy available on your system. Some systems have very little entropy and thus dnssec-keygen may take forever.
Possible solutions: 1. apt-get install haveged haveged daemon supplies lots of entropy to /dev/random. 2. dnssec-keygen -r /dev/urandom Will use "non-blocking" pseudo-random device (lower security). 3. Move mouse and tap on keyboard - kernel uses this as entropy source. 4. Buy a hardware entropy device. ** Changed in: bind9 (Ubuntu) Status: Confirmed => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/963368 Title: dnssec-keygen takes forever to generate a keyfile To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/963368/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs