Date: Wed, 19 Jul 2000 12:23:18 -0600 From: Warner Losh <imp@village.org> To: Mark Murray <mark@grondar.za> Cc: Poul-Henning Kamp <phk@critter.freebsd.dk>, current@FreeBSD.ORG Subject: Re: randomdev entropy gathering is really weak Message-ID: <200007191823.MAA83239@harmony.village.org> In-Reply-To: Your message of "Wed, 19 Jul 2000 20:11:59 %2B0200." <200007191812.UAA00448@grimreaper.grondar.za> References: <200007191812.UAA00448@grimreaper.grondar.za> <200007191733.LAA82735@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <200007191812.UAA00448@grimreaper.grondar.za> Mark Murray writes: : The randomness is good, no doubt; I worry about how accessible that : randomness is to an attacker? That's a good thing to worry about. : If the attacker is on your computer (he us a user, say), he might know : a lot about the current frequency of your xtal. He can also get the same : (remote) time offsets as you. What does that give him? Not much, but it : could reduce the bits that he needs to guess. By how much? I don't : know. I don't know the answers to that either. Of course, if the attaker has root access to your machine, then you have bigtime problems with keeping the random bits secret anyway... Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200007191823.MAA83239>