Date: Fri, 21 Nov 2014 13:57:29 -0800 From: Adrian Chadd <adrian@freebsd.org> To: Mark R V Murray <mark@grondar.org> Cc: "freebsd-arch@freebsd.org" <arch@freebsd.org>, Ian Lepore <ian@freebsd.org> Subject: Re: svn commit: r274739 - head/sys/mips/conf Message-ID: <CAJ-VmonofBOXkDbSgyy0su=ARFmgUyX_qyG=71yJQkJ=ruc%2BZA@mail.gmail.com> In-Reply-To: <7387FDB9-206F-418F-8B0B-D1FB9723A4D7@grondar.org> References: <201411200552.sAK5qnXP063073@svn.freebsd.org> <20141120084832.GE24601@funkthat.com> <AE8F2D30-7F91-4C90-B79A-D99857D8AED8@grondar.org> <20141121092245.GI99957@funkthat.com> <1416582989.1147.250.camel@revolution.hippie.lan> <026FEB8A-CA8C-472F-A8E4-DA3D0AC44B34@grondar.org> <1416596266.1147.290.camel@revolution.hippie.lan> <F017033A-B761-4435-A7F8-264D2F4662A0@grondar.org> <1416598889.1147.297.camel@revolution.hippie.lan> <7387FDB9-206F-418F-8B0B-D1FB9723A4D7@grondar.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 21 November 2014 11:53, Mark R V Murray <mark@grondar.org> wrote: > >> On 21 Nov 2014, at 19:41, Ian Lepore <ian@FreeBSD.org> wrote: >> The arrogance in the way you talk down to me about my right and ability >> to decide these things is mind-boggling. It's clear you're going to do >> whatever you want, so I guess I'll just shut up. > > I=E2=80=99m sorry for offence; that was unintended. > > Was *was* intended was to attempt to engage you in dialogue. You are > obviously annoyed, but after rather a lot of discussion (2 devsummits, > 1 EuroBSDCon and a lot of email), some form of consensus was required. > Unfortunately you are not one of those who could not be accommodated to > the extent that you desired. We obviously couldn=E2=80=99t make everyone = happy. > Some aspects of the compromise were things *I* really didn=E2=80=99t like= . > > I think there are ways round your problem, and I=E2=80=99ll be happy to h= elp you > get there. Please don=E2=80=99t just hold out for one particular solution= ; be > flexible. Unfortunately there are things that the real world expects on these silly embedded platforms that we can't avoid: * sshd as a requirement for remote access; * HTTPS as a requirement for remote access; * crypto available for WPA/WPA2 key negotiation for wifi access; and so on. So, we can't just "not" have random ready early at boot and only use non-crypto services, because the real world knocked on our door and said "We don't care about full security at boot; we'll gather entropy and improve things soon." So yes, I +1 needing some build option that lets us feed some crappy random numbers out at startup. I dislike it, but the realities of these ubiquitous embedded platforms is unfortunate :( -adrian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAJ-VmonofBOXkDbSgyy0su=ARFmgUyX_qyG=71yJQkJ=ruc%2BZA>