Date: Mon, 26 Jun 2000 16:09:26 +0200 From: "Leif Neland" <leifn@neland.dk> Cc: <freebsd-current@FreeBSD.ORG> Subject: Re: HEADS UP! New (incomplete) /dev/random device! Message-ID: <002501bfdf78$f3b41c40$0e00a8c0@neland.dk> References: <200006251512.RAA17563@grimreaper.grondar.za> <Pine.BSF.4.21.0006251252550.42497-100000@freefall.freebsd.org> <20000626082516.C18421@bone.nectar.com>
next in thread | previous in thread | raw e-mail | index | archive | help
How much does this "unrandomness" matter? How often are keys generated? If only once per program, then does it really matter if the keys are generated randomly or from my mothers maiden name? Leif ----- Original Message ----- From: "Jacques A . Vidrine" <n@nectar.com> To: "Kris Kennaway" <kris@FreeBSD.ORG> Cc: "Mark Murray" <mark@grondar.za>; <freebsd-current@FreeBSD.ORG>; <imp@FreeBSD.ORG> Sent: Monday, June 26, 2000 3:25 PM Subject: Re: HEADS UP! New (incomplete) /dev/random device! > On Sun, Jun 25, 2000 at 12:55:47PM -0700, Kris Kennaway wrote: > > > > I don't know which applications depend on /dev/random providing entropy > > > > and which gather their own. > > SSH and SSL should not be used: PGP should be okay. > > FWIW, a quick look indicates: > > MIT Kerberos V gathers its own ``entropy'' when generating random > keys > > Heimdal uses /dev/random > > This matters in particular for creating keys for servers. Session keys > may or may not be a big deal, depending on the application. > -- > Jacques Vidrine / n@nectar.com / nectar@FreeBSD.org > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002501bfdf78$f3b41c40$0e00a8c0>