Date: Wed, 4 Nov 1998 00:10:01 -0800 (PST) From: David Greenman <dg@root.com> To: freebsd-bugs@FreeBSD.ORG Subject: Re: kern/8570: patch for randomised process id allocation Message-ID: <199811040810.AAA11147@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/8570; it has been noted by GNATS.
From: David Greenman <dg@root.com>
To: ncb@attrition.org
Cc: FreeBSD-gnats-submit@FreeBSD.ORG
Subject: Re: kern/8570: patch for randomised process id allocation
Date: Wed, 04 Nov 1998 00:01:06 -0800
> The incremental nature of current process id allocation can lend
> itself to a number of potentially serious security problems. This
> patch allocates a pid using the kernels random() function in
> libkern. It is nearly the same as OpenBSD's equivalent, only
> difference being that obsd uses the arc4random() PRNG.
Sounds like a serious pessimization to me. You're going to need a lot of
justification for the alleged improved security that this brings before I'll
buy into it.
-DG
David Greenman
Co-founder/Principal Architect, The FreeBSD Project
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811040810.AAA11147>