Date: Tue, 15 May 2018 15:54:44 +0100 From: RW <rwmaillists@googlemail.com> To: freebsd-security@freebsd.org Subject: Re: Querying entropy state Message-ID: <20180515155444.0bb41e5f@gumby.homeunix.com> In-Reply-To: <130fc299-7d4e-e3fe-7ba8-d4d3a677591f@FreeBSD.org> References: <130fc299-7d4e-e3fe-7ba8-d4d3a677591f@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 15 May 2018 12:17:28 +0100 Chris Rees wrote: > Hello all, > > Since the new random device has been put in, sysutils/monitorix no > longer has a sysctl to poll to view the current state of entropy > (i.e. kern.random.sys.seeded). > > I have come to the understanding that it is no longer necessary or > relevant information with the new driver, and entropy is always at an > acceptable state; the author has suggested disabling this test on > FreeBSD. > > Am I correct that there is no point in checking for entropy any more, > and the entropy is unmeasurable? It hasn't been for many years. kern.random.sys.seeded was set when yarrow first seeded itself after a boot. As long as there's an entropy file this happened very early, and ordinary computers would spontaneously seed well before that. The sysctl was only relevant in some special cases like certain embedded devices.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20180515155444.0bb41e5f>