Date: Wed, 19 Sep 2012 18:47:58 +0100 From: RW <rwmaillists@googlemail.com> To: freebsd-security@freebsd.org Subject: Re: Collecting entropy from device_attach() times. Message-ID: <20120919184758.28589516@gumby.homeunix.com> In-Reply-To: <867grqm3pt.fsf@ds4.des.no> References: <20120918211422.GA1400@garage.freebsd.pl> <867grqm3pt.fsf@ds4.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 19 Sep 2012 17:28:46 +0200 Dag-Erling Sm=F8rgrav wrote: =20 > I would also suggest modifying yarrow to block reseeding as long as > possible, ideally right up until the first time something asks for a > random number, since reseeding throws away all accumulated entropy. reseeding doesn't throw away entropy it just resets the counters, after initrandom forces a slow reseed all of the accumulated entropy (up to 256 bits) is in the generator.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120919184758.28589516>