Date: Thu, 26 Oct 100 17:29:38 -0500 (CDT) From: Jim Bryant <jbryant@ppp-207-193-1-81.kscymo.swbell.net> To: edhall@weirdnoise.com (Ed Hall) Cc: freebsd-current@FreeBSD.ORG Subject: Re: entropy reseeding is totally broken Message-ID: <200010262229.RAA97309@ppp-207-193-1-81.kscymo.swbell.net> In-Reply-To: <200010260731.AAA16904@screech.weirdnoise.com> from Ed Hall at "Oct 26, 0 00:31:15 am"
next in thread | previous in thread | raw e-mail | index | archive | help
hmmm... I just got a message from chris, he said he will be adding AES/Rijndael to the kernel ASAP... According to the Rijndael spec, it seems to also function as an excellant pseudo-random number generator... You can find this info at: http://www.esat.kuleuven.ac.be/~rijmen/rijndael Section 13.4 of the Rijndael Block Cipher AES Proposal [version 2], describes this functionality. Based on the benchmark times of this process, I don't think it would be a serious performance hit to do this. If it's going to be in the kernel anyway... Just a constructive suggestion. In reply: > In real life, machines don't always get rebooted in a completely > controlled fashion (panic, power failure, etc.). Anything that > makes a reboot longer or less reliable is a definite non-starter. > > I can guarantee you, if the current /dev/random code isn't fixed before > it makes STABLE, folks running servers 24/7 are going to rip it right > out. > > -Ed jim -- All opinions expressed are mine, if you | "I will not be pushed, stamped, think otherwise, then go jump into turbid | briefed, debriefed, indexed, or radioactive waters and yell WAHOO !!! | numbered!" - #1, "The Prisoner" ------------------------------------------------------------------------------ kc5vdj@prodigy.net KC5VDJ - HF to 23cm KC5VDJ@NW0I.#NEKS.KS.USA.NOAM HF/VHF: IC-706MkII VHF/UHF/SHF: IC-T81A KPC3+ & PK-232MBX Grid: EM28px ------------------------------------------------------------------------------ ET has one helluva sense of humor, always anal-probing right-wing schizos! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010262229.RAA97309>