faster /dev/random

Bryn M. Reeves bmr at redhat.com
Mon Aug 23 10:12:46 UTC 2010


On 08/22/2010 04:46 AM, Wolfgang S. Rupprecht wrote:
> 
> Is there an approved way to increase the speed at which the random pool
> for /dev/random fills up?  I'm playig with dnssec and getnerating 2k rsa
> keys is taking up to 3 hours.  I've been googling a bit and Intel x86_64
> machines seem to have random number hardware built in (perhaps also
> AMD???)  Is there a way to funnel this into the entropy pool?
> 
> -wolfgang

If /dev/urandom doesn't provide high enough quality entropy for your
uses you could consider investing in an entropy key:

http://www.entropykey.co.uk/

They're very cheap - around $30-$60 depending on the number you're
buying and have been designed (by a very nice bunch of engineers! ;) for
exactly the problem you're trying to solve.

Very useful for systems that lack any other hardware rng but require a
constant source of good quality entropy.

Regards,
Bryn.


More information about the users mailing list