<div dir="ltr"><div><h3 style="margin:0.25em 0px 0px;padding:0px 0px 4px;font-size:18px;font-weight:normal;line-height:1.4em;color:rgb(204,102,0);font-family:Ubuntu,Arial,sans-serif;text-align:left"><div style="color:rgb(34,34,34);font-family:arial;font-size:small;line-height:normal;text-align:-webkit-auto">
There's a new feature in Ubuntu that enables PRNG seeding from an entropy server for new cloud instances:</div></h3><h3 style="margin:0.25em 0px 0px;padding:0px 0px 4px;font-size:18px;font-weight:normal;line-height:1.4em;color:rgb(204,102,0);font-family:Ubuntu,Arial,sans-serif;text-align:left">
<span style="color:rgb(34,34,34);font-family:arial;font-size:small;line-height:normal;text-align:-webkit-auto"><a href="http://blog.dustinkirkland.com/2014/02/random-seeds-in-ubuntu-1404-lts-cloud.html">http://blog.dustinkirkland.com/2014/02/random-seeds-in-ubuntu-1404-lts-cloud.html</a> </span></h3>
<div style><br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">Q: And what is Ubuntu's solution?<br>
<i>A: Meet pollinate.</i><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li>pollinate is a new security feature, that seeds the PRNG.</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left">
<li>Introduced in Ubuntu 14.04 LTS cloud images</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li>Upstart job</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left">
<li>It automatically seeds the Linux PRNG as early as possible, and before SSH keys are generated</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left">
<li>It’s GPLv3 free software</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li>Simple shell script wrapper around <a href="http://manpg.es/curl" style="color:rgb(85,136,170);text-decoration:none">curl</a></li>
</ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li>Fetches random seeds</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left">
<li>From 1 or more entropy servers in a pool</li></ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li>Writes them into <span style="font-family:'Courier New',Courier,monospace">/dev/urandom</span></li>
</ul><ul style="color:rgb(51,51,51);font-family:Ubuntu,Arial,sans-serif;font-size:13px;line-height:20px;text-align:left"><li><a href="https://launchpad.net/pollinate" style="color:rgb(85,136,170);text-decoration:none">https://launchpad.net/pollinate</a></li>
</ul></blockquote></div><div><br></div><br></div>