On 12/24/2015 04:30 PM, Alice Wonder wrote: > > > On 12/24/2015 12:54 PM, Robert Moskowitz wrote: > >> >> Right now all I want working is rndc. dnssec will be worked on come >> spring. >> >> With all I do in security, it bothers me that the Centos documentation >> specifies MD5. Should be at least SHA1, if not SHA256. >> >> > > Oh okay I apoligize, I mis-read your post as asking about generating > DNSSEC keys, due to the command name you were using. > > I have no clue about bind / rndc, I use NSD for authoritative. > > Sorry about the noise. Not a problem. Turns out, this is on an armv7 with the new C7-arm port and there are no (or too few) processes running for there to be anything in /dev/random. I was told to open up an ssh session and run dd if=/dev/mmcblk0p3 of=/dev/null Once that finished, the keygen finished in my console session.