From owner-freebsd-current  Mon Jul 17 23:58:46 2000
Delivered-To: freebsd-current@freebsd.org
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.40.131])
	by hub.freebsd.org (Postfix) with ESMTP
	id 121CD37BB60; Mon, 17 Jul 2000 23:58:41 -0700 (PDT)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.9.3/8.9.3) with ESMTP id IAA07492;
	Tue, 18 Jul 2000 08:58:26 +0200 (CEST)
	(envelope-from phk@critter.freebsd.dk)
To: "Jeroen C. van Gelderen" <jeroen@vangelderen.org>
Cc: Alexander Langer <alex@big.endian.de>,
	"Louis A. Mamakos" <louie@TransSys.COM>,
	Mark Murray <mark@grondar.za>,
	"Andrey A. Chernov" <ache@FreeBSD.ORG>, current@FreeBSD.ORG
Subject: Re: randomdev entropy gathering is really weak 
In-reply-to: Your message of "Tue, 18 Jul 2000 02:52:01 EDT."
             <3973FE91.BB1868DD@vangelderen.org> 
Date: Tue, 18 Jul 2000 08:58:26 +0200
Message-ID: <7490.963903506@critter.freebsd.dk>
From: Poul-Henning Kamp <phk@critter.freebsd.dk>
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

In message <3973FE91.BB1868DD@vangelderen.org>, "Jeroen C. van Gelderen" writes

>It's up to the user to decide what security level he needs.
>Both ought to be possible but having an insecure box ought
>to be an explicit decision.

Principle of POLA:  The box doesn't come up in a stupid configuration
right after install.

Principle of "tools, not politics": You can configure it stupidly if
you want, you can also strengthen it beyond practical use if you want.

--
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD coreteam member | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message