From owner-cvs-all Mon Jul 17 18:21:36 2000 Delivered-To: cvs-all@freebsd.org Received: from cypherpunks.ai (cypherpunks.ai [209.88.68.47]) by hub.freebsd.org (Postfix) with ESMTP id E5BEE37B77F; Mon, 17 Jul 2000 18:21:28 -0700 (PDT) (envelope-from jeroen@vangelderen.org) Received: from vangelderen.org (grolsch.ai [209.88.68.214]) by cypherpunks.ai (Postfix) with ESMTP id BF7224C; Mon, 17 Jul 2000 21:21:27 -0400 (AST) Message-ID: <3973B117.B3EB2711@vangelderen.org> Date: Mon, 17 Jul 2000 21:21:27 -0400 From: "Jeroen C. van Gelderen" X-Mailer: Mozilla 4.73 [en] (X11; I; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Kris Kennaway Cc: Mark Murray , cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc rc rc.shutdown src/etc/defaults rc.conf References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Kris Kennaway wrote: > > On Mon, 17 Jul 2000, Mark Murray wrote: > > > markm 2000/07/17 05:28:59 PDT > > > > Modified files: > > etc rc rc.shutdown > > etc/defaults rc.conf > > Log: > > Add entropy caching. With this, some entropy is cached at shutdown > > time, and this is used to reseed the random number generator at > > boot time. > > > > NOTE - this has no hope of working if you halt(); you need to > > execute rc.shutdown to get the entropy stash. > > Should this be stashed by the kernel in a swap device, or something? Yuck, no, that would be a gross hack! Swap partitions are not a good place for persistenly storing precious, security related information. That's what we have filesystems for. Cheers, Jeroen -- Jeroen C. van Gelderen o _ _ _ jeroen@vangelderen.org _o /\_ _ \\o (_)\__/o (_) _< \_ _>(_) (_)/<_ \_| \ _|/' \/ (_)>(_) (_) (_) (_) (_)' _\o_ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message