From owner-freebsd-security@FreeBSD.ORG  Tue Sep 11 23:01:22 2012
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 664)
	id CF5FE1065674; Tue, 11 Sep 2012 23:01:22 +0000 (UTC)
Date: Tue, 11 Sep 2012 16:01:21 -0700
From: David O'Brien <obrien@FreeBSD.org>
To: d@delphij.net
Message-ID: <20120911230121.GA90289@dragon.NUXI.org>
References: <20120911061530.GA77399@dragon.NUXI.org>
	<504EDC67.9070700@FreeBSD.org> <86sjao7q8c.fsf@ds4.des.no>
	<20120911205302.27484fd6@gumby.homeunix.com>
	<20120911200925.GA88456@dragon.NUXI.org>
	<504FA76A.5000209@delphij.net>
	<20120911211730.GB89188@dragon.NUXI.org>
	<504FAB87.3020701@delphij.net>
	<20120911215212.GA89515@dragon.NUXI.org>
	<504FBD15.8040907@delphij.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <504FBD15.8040907@delphij.net>
X-Operating-System: FreeBSD 10.0-CURRENT
X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger?
User-Agent: Mutt/1.5.20 (2009-06-14)
Cc: Arthur Mesh <arthurmesh@gmail.com>, Doug Barton <dougb@FreeBSD.org>,
	freebsd-rc@freebsd.org, freebsd-security@freebsd.org,
	RW <rwmaillists@googlemail.com>,
	Dag-Erling =?unknown-8bit?B?77+9?= <des@des.no>
Subject: Re: svn commit: r239569 - head/etc/rc.d
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: obrien@freebsd.org
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Sep 2012 23:01:22 -0000

On Tue, Sep 11, 2012 at 03:37:09PM -0700, Xin Li wrote:
> On 09/11/12 14:52, David O'Brien wrote:
> > On Tue, Sep 11, 2012 at 02:22:15PM -0700, Xin Li wrote:
> > > Hmm, but this sha256 run will turn the output to 65 bytes (hex 
> > > representation of 256 bits of hash output, 64 bytes, and one \n),
> > > so, only 256 bits of random data, is that intentional?
...
> > You suggested gzip, but I just don't know enough about compression 
> > algorithms as they apply in this area to know if we should use
> > gzip instead or not.
> 
> I don't think I know enough here, unfortunately...

Since I cannot justify using gzip, I'm keeping the sha256 in my patch.
I am not opposed to someone else changing that to gzip.

-- 
-- David  (obrien@FreeBSD.org)