msg.entropy.pl revision 1.1
1 1.1 martin /* $NetBSD: msg.entropy.pl,v 1.1 2020/11/04 14:29:40 martin Exp $ */ 2 1.1 martin 3 1.1 martin /* 4 1.1 martin * Copyright 2018 The NetBSD Foundation, Inc. 5 1.1 martin * All rights reserved. 6 1.1 martin * 7 1.1 martin * Redistribution and use in source and binary forms, with or without 8 1.1 martin * modification, are permitted provided that the following conditions 9 1.1 martin * are met: 10 1.1 martin * 1. Redistributions of source code must retain the above copyright 11 1.1 martin * notice, this list of conditions and the following disclaimer. 12 1.1 martin * 2. Redistributions in binary form must reproduce the above copyright 13 1.1 martin * notice, this list of conditions and the following disclaimer in the 14 1.1 martin * documentation and/or other materials provided with the distribution. 15 1.1 martin * 16 1.1 martin * THIS SOFTWARE IS PROVIDED BY PIERMONT INFORMATION SYSTEMS INC. ``AS IS'' 17 1.1 martin * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 18 1.1 martin * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 19 1.1 martin * ARE DISCLAIMED. IN NO EVENT SHALL PIERMONT INFORMATION SYSTEMS INC. BE 20 1.1 martin * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 21 1.1 martin * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 22 1.1 martin * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 23 1.1 martin * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 24 1.1 martin * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 25 1.1 martin * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF 26 1.1 martin * THE POSSIBILITY OF SUCH DAMAGE. 27 1.1 martin * 28 1.1 martin */ 29 1.1 martin 30 1.1 martin message not_enough_entropy 31 1.1 martin {This system seems to lack a cryptographically strong pseudo random 32 1.1 martin number generator. There is not enough entropy available to create secure 33 1.1 martin keys (e.g. ssh host keys). 34 1.1 martin 35 1.1 martin You may use random data generated on another computer and load it 36 1.1 martin here, or you could enter random characters manually. 37 1.1 martin 38 1.1 martin If you own a USB random number device, connect it now and select 39 1.1 martin the "Re-test" option.} 40 1.1 martin 41 1.1 martin message entropy_add_manually {Manual input of random data} 42 1.1 martin message entropy_download_raw {Load random data} 43 1.1 martin message entropy_download_seed {Import a NetBSD entropy file} 44 1.1 martin message entropy_retry {Re-test} 45 1.1 martin 46 1.1 martin message entropy_enter_manual1 47 1.1 martin {Enter random characters.} 48 1.1 martin 49 1.1 martin message entropy_enter_manual2 50 1.1 martin {They should contain at last 256 bits of randomness, as in 256 coin 51 1.1 martin tosses, 100 throws of a 6-sided die, 64 random hexadecimal digits, or 52 1.1 martin (if you are able to copy & paste output from another machine into this 53 1.1 martin installer) the output from running the following command on another 54 1.1 martin machine whose randomness you trust:} 55 1.1 martin 56 1.1 martin message entropy_enter_manual3 57 1.1 martin {Do not use the same data for multiple installations. 58 1.1 martin Terminate the input with an empty line.} 59 1.1 martin 60 1.1 martin message entropy_manual_not_enough 61 1.1 martin {You did not enter enough characters!} 62 1.1 martin 63 1.1 martin message entropy_select_file 64 1.1 martin {Please select how you want to transfer the random data file 65 1.1 martin to this machine:} 66 1.1 martin 67 1.1 martin message entropy_add_download_ftp 68 1.1 martin {Download via ftp} 69 1.1 martin 70 1.1 martin message entropy_add_download_http 71 1.1 martin {Download via http} 72 1.1 martin 73 1.1 martin message download_entropy 74 1.1 martin {Start download} 75 1.1 martin 76 1.1 martin message entropy_add_nfs 77 1.1 martin {Load from a NFS share} 78 1.1 martin 79 1.1 martin message entropy_add_local 80 1.1 martin {Load from a local file system (e.g. a USB device)} 81 1.1 martin 82 1.1 martin message entropy_file 83 1.1 martin {Path/file} 84 1.1 martin 85 1.1 martin message load_entropy 86 1.1 martin {Load random data} 87 1.1 martin 88 1.1 martin message set_entropy_file 89 1.1 martin {Random data file path} 90 1.1 martin 91 1.1 martin /* Called with: Example 92 1.1 martin * $0 = content of file NetBSD entropy seed file 93 1.1 martin */ 94 1.1 martin message entropy_via_nfs 95 1.1 martin {Select a server, a share and the file path to load the $0.} 96 1.1 martin 97 1.1 martin /* Called with: Example 98 1.1 martin * $0 = content of file NetBSD entropy seed file 99 1.1 martin */ 100 1.1 martin message entropy_via_download 101 1.1 martin {Since not enough entropy is available on this system, all crytographic 102 1.1 martin operations are suspect to replay attacks. 103 1.1 martin Please only use trustworthy local networks.} 104 1.1 martin 105 1.1 martin message entropy_data 106 1.1 martin {random data binary file} 107 1.1 martin 108 1.1 martin message entropy_data_hdr 109 1.1 martin {On a system with cryptographically strong pseudo random number generator 110 1.1 martin you can create a file with random binary data like this:} 111 1.1 martin 112 1.1 martin message entropy_seed 113 1.1 martin {NetBSD entropy seed file} 114 1.1 martin 115 1.1 martin message entropy_seed_hdr 116 1.1 martin {On a NetBSD system with cryptographically strong pseudo random number 117 1.1 martin generator you can create an entropy snapshot like this:} 118 1.1 martin 119 1.1 martin message entropy_path_and_file 120 1.1 martin {Path and filename} 121 1.1 martin 122 1.1 martin message entropy_localfs 123 1.1 martin {Enter the unmounted local device and directory on that device where 124 1.1 martin the random data is located.} 125 1.1 martin 126
Indexes created Tue Sep 23 07:09:52 GMT 2025