Date: Sat, 10 Apr 2004 09:39:58 +0100 From: Colin Percival <colin.percival@wadham.ox.ac.uk> To: Bruce M Simpson <bms@spc.org> Cc: Nate Lawson <nate@root.org> Subject: Re: cvs commit: src/sys/modules/random Makefile src/sys/dev/random harvest.c hash.c hash.h nehemiah.c nehemiah.h probe.c randomdev.c randomdev.h randomdev_soft.c randomdev_soft.h yar Message-ID: <6.0.1.1.1.20040410093354.07d96008@imap.sfu.ca> In-Reply-To: <20040410082705.GR710@empiric.dek.spc.org> References: <20040409103618.A48723@root.org> <200404091834.i39IYi0w060497@grimreaper.grondar.org> <20040410082705.GR710@empiric.dek.spc.org>
index | next in thread | previous in thread | raw e-mail
At 09:27 10/04/2004, Bruce M Simpson wrote: >I'm inclined to trust your judgement here on this, Mark, but Nate does have >a valid point; we need to be sure that the entropy sources are of sufficiently >high quality or we risk compromising the system. Is there any reason we can't just have an rc.conf variable entropy_trust_the_spooks = "YES" which allows users to choose between optimal performance and possible problems if the entropy source isn't as good as the vendor claims? Colin Percivalhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.1.1.1.20040410093354.07d96008>