From owner-freebsd-hackers@FreeBSD.ORG  Thu Sep 29 19:58:20 2005
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: freebsd-hackers@freebsd.org
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 45F4E16A41F
	for <freebsd-hackers@freebsd.org>; Thu, 29 Sep 2005 19:58:20 +0000 (GMT)
	(envelope-from dougb@FreeBSD.org)
Received: from mail2.fluidhosting.com (mail2.fluidhosting.com [204.14.90.62])
	by mx1.FreeBSD.org (Postfix) with SMTP id A950643D4C
	for <freebsd-hackers@freebsd.org>; Thu, 29 Sep 2005 19:58:19 +0000 (GMT)
	(envelope-from dougb@FreeBSD.org)
Received: (qmail 44270 invoked by uid 399); 29 Sep 2005 19:58:18 -0000
Received: from mail1.fluidhosting.com (204.14.90.61)
	by mail2.fluidhosting.com with SMTP; 29 Sep 2005 19:58:18 -0000
Received: (qmail 19887 invoked by uid 399); 29 Sep 2005 19:58:18 -0000
Received: from localhost (HELO ?192.168.1.100?)
	(dougb@dougbarton.net@127.0.0.1)
	by localhost with SMTP; 29 Sep 2005 19:58:18 -0000
Message-ID: <433C4759.7010000@FreeBSD.org>
Date: Thu, 29 Sep 2005 12:58:17 -0700
From: Doug Barton <dougb@FreeBSD.org>
Organization: http://www.FreeBSD.org/
User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050908)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Brian Reichert <reichert@numachi.com>
References: <20050929181055.GF74605@numachi.com>	<20050929181413.GA87227@xor.obsecurity.org>
	<20050929181623.GG74605@numachi.com>
In-Reply-To: <20050929181623.GG74605@numachi.com>
X-Enigmail-Version: 0.92.0.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-hackers@freebsd.org, Kris Kennaway <kris@obsecurity.org>
Subject: Re: anyone using security/dropbear?
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Sep 2005 19:58:20 -0000

Brian Reichert wrote:
> On Thu, Sep 29, 2005 at 02:14:13PM -0400, Kris Kennaway wrote:
> 
>>Check the source.. is it using /dev/urandom (which never blocks), or
>>/dev/random (which I still don't think blocks, but may return short
>>reads).  Either way, it sounds like some level of application bug...it
>>probably should be using the former source, but even if it's not, it
>>shouldn't be blocking.
> 
> 
> ktrace shows /dev/random, and indeed, very short reads.
> 
> Let me try another maunal build, pushing it to /dev/urandom.

Depending on why that program needs random bits, that could be a very bad 
idea. Take a look at the following page and see if it helps:

http://people.freebsd.org/~dougb/randomness.html


-- 

     This .signature sanitized for your protection