From owner-freebsd-current  Fri Jul 21  3:46:38 2000
Delivered-To: freebsd-current@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id D43F837BAF4; Fri, 21 Jul 2000 03:46:31 -0700 (PDT)
	(envelope-from kris@FreeBSD.org)
Received: from localhost (kris@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id DAA18360;
	Fri, 21 Jul 2000 03:46:31 -0700 (PDT)
	(envelope-from kris@FreeBSD.org)
X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs
Date: Fri, 21 Jul 2000 03:46:31 -0700 (PDT)
From: Kris Kennaway <kris@FreeBSD.org>
To: Dan Moschuk <dan@freebsd.org>
Cc: Mark Murray <mark@grondar.za>, current@freebsd.org
Subject: Re: randomdev entropy gathering is really weak
In-Reply-To: <20000718103729.A1221@spirit.jaded.net>
Message-ID: <Pine.BSF.4.21.0007210345170.13729-100000@freefall.freebsd.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, 18 Jul 2000, Dan Moschuk wrote:

> | Gotcha - fix coming; I need to stash some randomness at shutdown time, and
> | use that to reseed the RNG at reboot time.
> 
> What about saving the state of the RNG and re-reading it on bootup?  That
> will allow Yarrow to continue right where it left off. :-)

That's a bad thing. You don't want someone to be able to examine the exact
PRNG state at next boot by looking at your hard disk after the machine has
shut down.

Kris

--
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe@alum.mit.edu>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message