From owner-freebsd-current Sat Jul 22 2:21:18 2000 Delivered-To: freebsd-current@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id E423837B71B; Sat, 22 Jul 2000 02:21:15 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id CAA21274; Sat, 22 Jul 2000 02:21:15 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Sat, 22 Jul 2000 02:21:15 -0700 (PDT) From: Kris Kennaway To: Mark Murray Cc: current@FreeBSD.org Subject: Re: randomdev entropy gathering is really weak In-Reply-To: <200007220902.LAA05901@grimreaper.grondar.za> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sat, 22 Jul 2000, Mark Murray wrote: > Because of Yarrow's cryptographic protection of its internal state, its > frequent reseeds and its clever geneation mechanism, this paradigm is > less important - the output is 256-bit safe (Blowfish safe) for any size > of output[*]. When you read 1000 bits, I am not selling you 1000 bits > each guaranteed random, I am selling you 1000 bits that are predictable > within the constraints of needing to crack 256-bit Blowfish. So what it if I want/need 257 bits? :-) Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message