From owner-cvs-all Sat Jan 13 16:33:46 2001 Delivered-To: cvs-all@freebsd.org Received: from gratis.grondar.za (grouter.grondar.za [196.7.18.65]) by hub.freebsd.org (Postfix) with ESMTP id EDFC437B402; Sat, 13 Jan 2001 16:33:20 -0800 (PST) Received: from grondar.za (root@gratis.grondar.za [196.7.18.133]) by gratis.grondar.za (8.11.1/8.11.1) with ESMTP id f0E0X4I21880; Sun, 14 Jan 2001 02:33:07 +0200 (SAST) (envelope-from mark@grondar.za) Message-Id: <200101140033.f0E0X4I21880@gratis.grondar.za> To: Matt Dillon Cc: Doug Barton , Robert Watson , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc crontab rc src/etc/defaults rc.conf src/etc/mtree BSD.root.dist src/libexec Makefile src/libexec/save-entropy Makefile save-entropy.sh References: <200101140007.f0E07G336509@earth.backplane.com> In-Reply-To: <200101140007.f0E07G336509@earth.backplane.com> ; from Matt Dillon "Sat, 13 Jan 2001 16:07:16 PST." Date: Sun, 14 Jan 2001 02:33:05 +0200 From: Mark Murray Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > It is inappropriate to force the entire developer community to hack up > their configurations to 'avoid' a problem that should not exist by > default. A problem we avoid is sshd getting predictable numbers and being compromised. > It IS appropriate to have options to enable the new /dev/random code... > so developers can turn it on in /etc/rc.conf while it's under development > if they want to mess with it. It is NOT appropriate to have it on by > default and to force developers to turn it off if they don't want to mess > with it. > > There is a big difference. One creates havoc, one creates a smooth > development path. Doug and Mark have chosen the wrong path. Actually, Matt, we have chosen the above path. You just don't believe us because we haven't finished. You also ignore the security officer's input in this whole thing. M -- Mark Murray Warning: this .sig is umop ap!sdn To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message