[CentOS] Centos7 poblems with dnssec-keygen

Robert Moskowitz rgm at htt-consult.com
Thu Dec 24 21:45:31 UTC 2015



On 12/24/2015 04:30 PM, Alice Wonder wrote:
>
>
> On 12/24/2015 12:54 PM, Robert Moskowitz wrote:
>
>>
>> Right now all I want working is rndc.  dnssec will be worked on come
>> spring.
>>
>> With all I do in security, it bothers me that the Centos documentation
>> specifies MD5.  Should be at least SHA1, if not SHA256.
>>
>>
>
> Oh okay I apoligize, I mis-read your post as asking about generating 
> DNSSEC keys, due to the command name you were using.
>
> I have no clue about bind / rndc, I use NSD for authoritative.
>
> Sorry about the noise.

Not a problem.

Turns out, this is on an armv7 with the new C7-arm port and there are 
no  (or too few) processes running for there to be anything in 
/dev/random.  I was told to open up an ssh session and run

dd if=/dev/mmcblk0p3 of=/dev/null

Once that finished, the keygen finished in my console session.





More information about the CentOS mailing list