From owner-freebsd-security@FreeBSD.ORG Thu Sep 13 19:19:38 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 664) id 43E45106566C; Thu, 13 Sep 2012 19:19:38 +0000 (UTC) Date: Thu, 13 Sep 2012 12:19:37 -0700 From: David O'Brien To: Mark Murray Message-ID: <20120913191936.GA36319@dragon.NUXI.org> References: <20120906230157.5307a21f@gumby.homeunix.com> <20120906224703.GD89120@x96.org> <20120907015157.GA29497@server.rulingia.com> <20120910135218.GA68128@dragon.NUXI.org> <504E343A.4020802@FreeBSD.org> <20120911064636.GB72584@dragon.NUXI.org> <504EE446.6060500@FreeBSD.org> <20120911082309.GD72584@dragon.NUXI.org> <20120912104547.1d0061c1@gumby.homeunix.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Operating-System: FreeBSD 10.0-CURRENT X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger? User-Agent: Mutt/1.5.20 (2009-06-14) Cc: Arthur Mesh , Ian Lepore , Doug Barton , freebsd-rc@freebsd.org, freebsd-security@freebsd.org, RW , Xin Li Subject: Re: svn commit: r239569 - head/etc/rc.d X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: obrien@freebsd.org List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Sep 2012 19:19:38 -0000 On Thu, Sep 13, 2012 at 08:00:19PM +0100, Mark Murray wrote: > I'm in favour of doing something > to "dribble" the startup suff in, while limiting its length to (say) > 1-2 K. Compressing the gathered stuff is a good idea, and inserting > that *first* with a delay following would be ideal; 1 second would be > sufficient, 2 safer if the machine very busy. After that "chunking" the > cached stuff and easing it in slowly would be a Good Thing(tm). Mark, Can you add more about your reasoning why the low-grade entropy should be input before the high-quality cached entropy? thanks, -- -- David (obrien@FreeBSD.org)