From owner-freebsd-current  Mon Jun 26 10:46:38 2000
Delivered-To: freebsd-current@freebsd.org
Received: from ns.internet.dk (ns.internet.dk [194.19.140.1])
	by hub.freebsd.org (Postfix) with ESMTP id A2B4437BB2C
	for <freebsd-current@FreeBSD.ORG>; Mon, 26 Jun 2000 10:46:32 -0700 (PDT)
	(envelope-from leifn@neland.dk)
Received: (from uucp@localhost)
	by ns.internet.dk (8.9.3/8.9.3) with UUCP id QAA55863
	for freebsd-current@FreeBSD.ORG; Mon, 26 Jun 2000 16:14:32 +0200 (CEST)
	(envelope-from leifn@neland.dk)
Received: from gina (gina.neland.dk [192.168.0.14])
	by arnold.neland.dk (8.9.3/8.9.3) with SMTP id QAA88707
	for <freebsd-current@FreeBSD.ORG>; Mon, 26 Jun 2000 16:14:20 +0200 (CEST)
	(envelope-from leifn@neland.dk)
Message-ID: <002501bfdf78$f3b41c40$0e00a8c0@neland.dk>
Reply-To: "Leif Neland" <leif@neland.dk>
From: "Leif Neland" <leifn@neland.dk>
Cc: <freebsd-current@FreeBSD.ORG>
References: <200006251512.RAA17563@grimreaper.grondar.za> <Pine.BSF.4.21.0006251252550.42497-100000@freefall.freebsd.org> <20000626082516.C18421@bone.nectar.com>
Subject: Re: HEADS UP! New (incomplete) /dev/random device!
Date: Mon, 26 Jun 2000 16:09:26 +0200
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2919.6600
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

How much does this "unrandomness" matter?

How often are keys generated? If only once per program, then does it really
matter if the keys are generated randomly or from my mothers maiden name?

Leif

----- Original Message -----
From: "Jacques A . Vidrine" <n@nectar.com>
To: "Kris Kennaway" <kris@FreeBSD.ORG>
Cc: "Mark Murray" <mark@grondar.za>; <freebsd-current@FreeBSD.ORG>;
<imp@FreeBSD.ORG>
Sent: Monday, June 26, 2000 3:25 PM
Subject: Re: HEADS UP! New (incomplete) /dev/random device!


> On Sun, Jun 25, 2000 at 12:55:47PM -0700, Kris Kennaway wrote:
> > > > I don't know which applications depend on /dev/random providing
entropy
> > > > and which gather their own.
> > SSH and SSL should not be used: PGP should be okay.
>
> FWIW, a quick look indicates:
>
>   MIT Kerberos V gathers its own ``entropy'' when generating random
>   keys
>
>   Heimdal uses /dev/random
>
> This matters in particular for creating keys for servers.  Session keys
> may or may not be a big deal, depending on the application.
> --
> Jacques Vidrine / n@nectar.com / nectar@FreeBSD.org
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-current" in the body of the message
>




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message