From owner-freebsd-rc@FreeBSD.ORG Tue Sep 11 19:53:09 2012 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 869DA1065670; Tue, 11 Sep 2012 19:53:09 +0000 (UTC) (envelope-from rwmaillists@googlemail.com) Received: from mail-ey0-f182.google.com (mail-ey0-f182.google.com [209.85.215.182]) by mx1.freebsd.org (Postfix) with ESMTP id 8D7338FC1B; Tue, 11 Sep 2012 19:53:08 +0000 (UTC) Received: by eaak11 with SMTP id k11so499914eaa.13 for ; Tue, 11 Sep 2012 12:53:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=date:from:to:cc:subject:message-id:in-reply-to:references:x-mailer :mime-version:content-type:content-transfer-encoding; bh=oMOi0bJHHbMR02KiiCSgv28zNuNhrw0B1tz//kSMU10=; b=VeEX8R8ZN/0632acwGNsXJt5O1F7PFMUZH33s7CcEhtdkkvQWcWmO6gO1IGGssFFxT XxkGIOwmioFUcQDSeM1LYKIuPq5Qhko1MOUAuuKVCGErIHPK5tAT6EPMY/N1izH0USMD G/zgIL6WFbE0hU2hvWuB/ArA3swvCfWYHZdCm/1VSQw0gKdJ4C0n0dUpz3O4cQl5RIzQ +LaJhXOgy8Jk+GtswIhAON0YuOtsirWsyzlh0z53/Fu+ovUHLMCY6toO047sOSKNaa/D xGTtbiULgYRynxn4gcicH46cwqayr7GOkyMRvZeBgb8J5+QVh8oWKLzB8+y98vImimi1 1jsw== Received: by 10.14.224.73 with SMTP id w49mr27609120eep.37.1347393187579; Tue, 11 Sep 2012 12:53:07 -0700 (PDT) Received: from gumby.homeunix.com (87-194-105-247.bethere.co.uk. [87.194.105.247]) by mx.google.com with ESMTPS id y1sm49944636eel.0.2012.09.11.12.53.04 (version=SSLv3 cipher=OTHER); Tue, 11 Sep 2012 12:53:05 -0700 (PDT) Date: Tue, 11 Sep 2012 20:53:02 +0100 From: RW To: Dag-Erling =?ISO-8859-1?Q?Sm=F8rgrav?= Message-ID: <20120911205302.27484fd6@gumby.homeunix.com> In-Reply-To: <86sjao7q8c.fsf@ds4.des.no> References: <50450F2A.10708@FreeBSD.org> <20120903203505.GN1464@x96.org> <50451D6E.30401@FreeBSD.org> <20120903214638.GO1464@x96.org> <50453686.9090100@FreeBSD.org> <20120904220754.GA3643@server.rulingia.com> <20120906174247.GB13179@dragon.NUXI.org> <20120906230157.5307a21f@gumby.homeunix.com> <20120906224703.GD89120@x96.org> <50493480.8060307@FreeBSD.org> <20120911061530.GA77399@dragon.NUXI.org> <504EDC67.9070700@FreeBSD.org> <86sjao7q8c.fsf@ds4.des.no> X-Mailer: Claws Mail 3.8.1 (GTK+ 2.24.6; amd64-portbld-freebsd8.3) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Arthur Mesh , Doug Barton , freebsd-rc@freebsd.org, obrien@freebsd.org, freebsd-security@freebsd.org Subject: Re: svn commit: r239569 - head/etc/rc.d X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Sep 2012 19:53:09 -0000 On Tue, 11 Sep 2012 13:28:51 +0200 Dag-Erling Sm=F8rgrav wrote: > Doug Barton writes: > > 1. Pseudo-randomize the order in which we utilize the files in > > /var/db/entropy >=20 > There's no need for randomization if we make sure that *all* the data > written to /dev/random is used, rather than just the first 4096 bytes; > or that we reduce the amount of data to 4096 bytes before we write it > so none of it is discarded. My gut feeling is that compression is > better than hashing for that purpose, It's analogous to a passphrase, have you ever heard of a passphrase being compressed rather than hashed?=20 The only good reason for compression is if compression+hashing is faster than hashing, and that sounds unlikely. You all seem to be making very heavy weather of this - all that's needed is to pass the low-grade stuff through a hash of your choice and then follow that with the entropy file to fill-up the remaining 4k.