Strongswan fails to access /dev/urandom
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
strongswan (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
I'm having issue's getting strongswan to work on Ubuntu. First of all, I find it quite weird that ipsec is not capable of running as an unprivileged user (like in Gentoo). But I guess this has something todo with the fact that Ubuntu distributes binary packages.
Here is wat I'm getting:
root@Delta:~# ipsec up remote
initiating IKE_SA remote[1] to 82.169.126.54
opening "/dev/urandom" failed: Permission denied
error generating nonce
tried to check-in and delete nonexisting IKE_SA
However:
root@Delta:~# ls -la /dev/urandom
crw-rw-rw- 1 root root 1, 9 jun 17 17:54 /dev/urandom
root@Delta:~# lsattr /dev/urandom
lsattr: Bewerking wordt niet ondersteund Tijdens lezen van vlaggen op /dev/urandom (-> says it is not supported)
Furthermore, I also ran across bug #823549, which I worked around with:
config setup
plutostart=no
P.S. This is with ubuntu 12.04 and strongswan 4.5.2-1.2.