From owner-freebsd-current Mon Jun 26 6:25:25 2000 Delivered-To: freebsd-current@freebsd.org Received: from gw.nectar.com (gw.nectar.com [209.98.143.44]) by hub.freebsd.org (Postfix) with ESMTP id CA18237B672; Mon, 26 Jun 2000 06:25:22 -0700 (PDT) (envelope-from nectar@nectar.com) Received: from bone.nectar.com (bone.nectar.com [10.0.1.105]) by gw.nectar.com (Postfix) with ESMTP id 3B64B9B2D; Mon, 26 Jun 2000 08:25:21 -0500 (CDT) Received: by bone.nectar.com (Postfix, from userid 1001) id 1467F1DC6; Mon, 26 Jun 2000 08:25:17 -0500 (CDT) Date: Mon, 26 Jun 2000 08:25:17 -0500 From: "Jacques A . Vidrine" To: Kris Kennaway Cc: Mark Murray , freebsd-current@freebsd.org, imp@freebsd.org Subject: Re: HEADS UP! New (incomplete) /dev/random device! Message-ID: <20000626082516.C18421@bone.nectar.com> Mail-Followup-To: "Jacques A . Vidrine" , Kris Kennaway , Mark Murray , freebsd-current@freebsd.org, imp@freebsd.org References: <200006251512.RAA17563@grimreaper.grondar.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: ; from kris@FreeBSD.org on Sun, Jun 25, 2000 at 12:55:47PM -0700 X-Url: http://www.nectar.com/ Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sun, Jun 25, 2000 at 12:55:47PM -0700, Kris Kennaway wrote: > > > I don't know which applications depend on /dev/random providing entropy > > > and which gather their own. > SSH and SSL should not be used: PGP should be okay. FWIW, a quick look indicates: MIT Kerberos V gathers its own ``entropy'' when generating random keys Heimdal uses /dev/random This matters in particular for creating keys for servers. Session keys may or may not be a big deal, depending on the application. -- Jacques Vidrine / n@nectar.com / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message