From owner-freebsd-security@FreeBSD.ORG  Fri Sep 14 13:43:55 2012
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 32FB71065673;
	Fri, 14 Sep 2012 13:43:55 +0000 (UTC)
	(envelope-from benlaurie@gmail.com)
Received: from mail-vc0-f182.google.com (mail-vc0-f182.google.com
	[209.85.220.182])
	by mx1.freebsd.org (Postfix) with ESMTP id 7FF4B8FC21;
	Fri, 14 Sep 2012 13:43:54 +0000 (UTC)
Received: by vcbfw7 with SMTP id fw7so6270966vcb.13
	for <multiple recipients>; Fri, 14 Sep 2012 06:43:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:sender:in-reply-to:references:date
	:x-google-sender-auth:message-id:subject:from:to:cc:content-type;
	bh=8DuvN7KEzLRYouAwzx14Nm/KIep4vqkv7/1JlrflCXA=;
	b=TlZrpp5LPyPARsix8WsGwiYR9oDhGWmcJ3vM5EKqA0UpSHtT4Vwm0Htxv5gekDBnG8
	ibrVDGg9EeGijLWQUdpgZDMWsrcqHiGZ4eGVdh3/3qaWRvAzSGZXlcLulHLpDygikiI8
	mrnzR+DphIbjUwgAd2gsj9oootjFCXFytBzNQ8ZtMA6JHA4IBCTilY+lnASWvg3S7uON
	4lqJW50w/6PWE6Uh32HTRUTAc4luYUUxfbqiNIgGSmGPUhtBXTUWybPiO5miezP1PSDt
	da8seIwNyEi19WXyFO/bq0msZ/VZXMoOXGPvvpfkEPCKPl6jVf4poY4u684X0NEqFF5q
	bROQ==
MIME-Version: 1.0
Received: by 10.220.155.3 with SMTP id q3mr2199467vcw.11.1347630233725; Fri,
	14 Sep 2012 06:43:53 -0700 (PDT)
Sender: benlaurie@gmail.com
Received: by 10.58.79.243 with HTTP; Fri, 14 Sep 2012 06:43:53 -0700 (PDT)
In-Reply-To: <alpine.BSF.2.00.1209141336170.13080@ai.fobar.qr>
References: <50453686.9090100@FreeBSD.org>
	<20120911082309.GD72584@dragon.NUXI.org>
	<504F0687.7020309@FreeBSD.org> <201209121628.18088.jhb@freebsd.org>
	<5050F477.8060409@FreeBSD.org> <20120912213141.GI14077@x96.org>
	<20120913052431.GA15052@dragon.NUXI.org>
	<alpine.BSF.2.00.1209131258210.13080@ai.fobar.qr>
	<alpine.BSF.2.00.1209141336170.13080@ai.fobar.qr>
Date: Fri, 14 Sep 2012 14:43:53 +0100
X-Google-Sender-Auth: VmHYG6PpiU7maxRffIqG6nvCYyQ
Message-ID: <CAG5KPzyngKFNMoPKmfKg+QLkGPj0oMX8YYp0qQNHgKTSH4afHQ@mail.gmail.com>
From: Ben Laurie <benl@freebsd.org>
To: "Bjoern A. Zeeb" <bz@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1
Cc: Arthur Mesh <arthurmesh@gmail.com>,
	Ian Lepore <freebsd@damnhippie.dyndns.org>,
	Doug Barton <dougb@freebsd.org>, freebsd-security@freebsd.org,
	RW <rwmaillists@googlemail.com>
Subject: Re: svn commit: r239569 - head/etc/rc.d
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Sep 2012 13:43:55 -0000

On Fri, Sep 14, 2012 at 2:38 PM, Bjoern A. Zeeb <bz@freebsd.org> wrote:
> 7) send all data to the kernel and hash (arch dependent?) it + counter value
>    into the buffer on overflow, as in b[n] = H(b[n] + c + i[n]) in the
> kernel
>    (can control when buffer full and only then take action when
>    needed, indepedent on how seed data is chosen, uses standard
>    technology)

IMO, this is the only good option.