Re: regarding the changes to kernel entropy gathering

[Martin Husemann <martin%duskware.de@localhost>]

On Wed, Apr 07, 2021 at 12:14:58PM -0700, Greg A. Woods wrote:
> > You run it once. Manually. And never again.
> 
> Nope, sorry, that's not a good enough answer.

It is for the typical and default installs.

>  It doesn't solve the
> problem of dealing with a lack of mutable storage.

When you create a custom setup like that, you will have to replace
etc/rc.d/entropy with a custom solution (e.g. mounting some flash storage).

Or you ignore the issue and do the dd at each boot - hopefully not generating
any strong keys on that machine then (but you would have no good storage
for those anyway).

Martin