Date: Mon, 17 Jul 2000 21:21:27 -0400 From: "Jeroen C. van Gelderen" <jeroen@vangelderen.org> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: Mark Murray <markm@FreeBSD.ORG>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc rc rc.shutdown src/etc/defaults rc.conf Message-ID: <3973B117.B3EB2711@vangelderen.org> References: <Pine.BSF.4.21.0007171303500.49901-100000@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Kris Kennaway wrote:
>
> On Mon, 17 Jul 2000, Mark Murray wrote:
>
> > markm 2000/07/17 05:28:59 PDT
> >
> > Modified files:
> > etc rc rc.shutdown
> > etc/defaults rc.conf
> > Log:
> > Add entropy caching. With this, some entropy is cached at shutdown
> > time, and this is used to reseed the random number generator at
> > boot time.
> >
> > NOTE - this has no hope of working if you halt(); you need to
> > execute rc.shutdown to get the entropy stash.
>
> Should this be stashed by the kernel in a swap device, or something?
Yuck, no, that would be a gross hack!
Swap partitions are not a good place for persistenly storing
precious, security related information. That's what we have
filesystems for.
Cheers,
Jeroen
--
Jeroen C. van Gelderen o _ _ _
jeroen@vangelderen.org _o /\_ _ \\o (_)\__/o (_)
_< \_ _>(_) (_)/<_ \_| \ _|/' \/
(_)>(_) (_) (_) (_) (_)' _\o_
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3973B117.B3EB2711>