Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    WARNING: pseudo-random number generator used for IPsec processing

    2.0-RC Snapshot Feedback and Problems - RETIRED
    3
    3
    5006
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Darkk last edited by

      I get this on my PfSense 2.0 console screen whenever it first makes a IPsec connection:

      WARNING: pseudo-random number generator used for IPsec processing

      Should I be concerned about it or it's just largely cosmetic?

      I am using the 2.0-RC1 (i386) built on Mon Mar 28 16:37:49 EDT 2011 snapshot but been seeing this for a month or so now with previous snapshots.

      Darkk

      1 Reply Last reply Reply Quote 0
      • C
        cmb last edited by

        You've always been seeing that, it's been around in FreeBSD for as long as IPsec has, over a decade. You don't have a true random number generator so your IPsec may be weaker than if you had one. In practice, ignore it, nobody is going to go to the extent of attempting to crack that for what you have on your network (there are much easier and cheaper ways to get it).

        1 Reply Last reply Reply Quote 0
        • jimp
          jimp Rebel Alliance Developer Netgate last edited by

          And the obligatory XKCD on the topic…

          http://xkcd.com/538/

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post