recently i heared about "Haveged", a user-space daemon designed to
provide additional entropie for Linux
(http://www.issihosts.com/haveged/). I wonder if it could be a smart
idea to install it when deploying crypto systems like Djigzo?
From what i understand the impact on low "strong" entropie
(/dev/random starvation) is not that bad for S/MIME as the only weak
point will be the random symetric key used for encryption, signing
should not be affected. So additional entropie would be of help when
using the Djigzo built-in CA or when doing a somewhat bigger share of
mail encryption, no?
Would be interesting to here from security aware people about this topic