4 Overall security mainly depends on client side:
5 @ref{PAKE, good passphrase} and cryprographically good pseudo random
8 Some operating systems do not have good enough quality PRNG, bad
9 @code{/dev/urandom}. You should use separate PRNG with them. GoVPN
10 communicates with them using Entropy Gathering Daemon protocol.
12 To switch using EGD-compatible daemons instead of @code{crypto/rand}
13 library you provide @code{-egd PATH} command line option, where
14 @code{PATH} is either host:port or path to the domain socket.
17 % ./govpn-server [...] -egd /var/run/egd.sock