1/* $NetBSD: msg.entropy.fr,v 1.4 2021/10/08 22:07:11 nia Exp $ */ 2 3/* 4 * Copyright (c) 2020 The NetBSD Foundation, Inc. 5 * All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 16 * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 17 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 18 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 19 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 20 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 21 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 22 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 23 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 24 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 25 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 26 * POSSIBILITY OF SUCH DAMAGE. 27 */ 28 29message Configure_entropy {Set up entropy} 30 31message continue_without_entropy {Continue without entropy} 32 33message not_enough_entropy 34{This system seems to lack a cryptographically strong pseudo random 35number generator. There is not enough entropy available to create secure 36keys (e.g. ssh host keys). 37 38You may use random data generated on another computer and load it 39here, or you could enter random characters manually. 40 41If you own a USB random number device, connect it now and select 42the "Re-test" option.} 43 44message entropy_add_manually {Manual input of random data} 45message entropy_download_raw {Load raw binary random data} 46message entropy_download_seed {Import a NetBSD entropy file} 47message entropy_retry {Re-test} 48 49message entropy_enter_manual1 50{Enter random characters.} 51 52message entropy_enter_manual2 53{They should contain at last 256 bits of randomness, as in 256 coin 54tosses, 100 throws of a 6-sided die, 64 random hexadecimal digits, or 55(if you are able to copy & paste output from another machine into this 56installer) the output from running the following command on another 57machine whose randomness you trust:} 58 59message entropy_enter_manual3 60{Do not use the same data for multiple installations. 61Terminate the input with an empty line.} 62 63message entropy_manual_not_enough 64{You did not enter enough characters!} 65 66message entropy_select_file 67{Please select how you want to transfer the random data file 68to this machine:} 69 70message entropy_add_download_ftp 71{Download via ftp} 72 73message entropy_add_download_http 74{Download via http} 75 76message download_entropy 77{Start download} 78 79message entropy_add_nfs 80{Load from a NFS share} 81 82message entropy_add_local 83{Load from a local file system (e.g. a USB device)} 84 85message entropy_file 86{Path/file} 87 88message load_entropy 89{Load random data} 90 91message set_entropy_file 92{Random data file path} 93 94/* Called with: Example 95 * $0 = content of file NetBSD entropy seed file 96 */ 97message entropy_via_nfs 98{Select a server, a share and the file path to load the $0.} 99 100/* Called with: Example 101 * $0 = content of file NetBSD entropy seed file 102 */ 103message entropy_via_download 104{Since not enough entropy is available on this system, all crytographic 105operations are suspect to replay attacks. 106Please only use trustworthy local networks.} 107 108message entropy_data 109{random data binary file} 110 111message entropy_data_hdr 112{On a system with cryptographically strong pseudo random number generator 113you can create a file with random binary data like this:} 114 115message entropy_seed 116{NetBSD entropy seed file} 117 118message entropy_seed_hdr 119{On a NetBSD system with cryptographically strong pseudo random number 120generator you can create an entropy snapshot like this:} 121 122message entropy_path_and_file 123{Path and filename} 124 125message entropy_localfs 126{Enter the unmounted local device and directory on that device where 127the random data is located.} 128 129