From owner-freebsd-current Thu Oct 26 15:30: 2 2000 Delivered-To: freebsd-current@freebsd.org Received: from pimout1-int.prodigy.net (pimout1-ext.prodigy.net [207.115.63.77]) by hub.freebsd.org (Postfix) with ESMTP id BA7A737B479 for ; Thu, 26 Oct 2000 15:29:57 -0700 (PDT) Received: from ppp-207-193-1-81.kscymo.swbell.net (ppp-207-193-1-81.kscymo.swbell.net [207.193.1.81]) by pimout1-int.prodigy.net (8.10.1/8.10.1) with ESMTP id e9QMTop259754; Thu, 26 Oct 2000 18:29:51 -0400 Received: (from jbryant@localhost) by ppp-207-193-1-81.kscymo.swbell.net (8.9.3/8.9.3) id RAA97309; Thu, 26 Oct 2000 17:29:40 -0500 (CDT) (envelope-from jbryant) From: Jim Bryant Message-Id: <200010262229.RAA97309@ppp-207-193-1-81.kscymo.swbell.net> Subject: Re: entropy reseeding is totally broken In-Reply-To: <200010260731.AAA16904@screech.weirdnoise.com> from Ed Hall at "Oct 26, 0 00:31:15 am" To: edhall@weirdnoise.com (Ed Hall) Date: Thu, 26 Oct 100 17:29:38 -0500 (CDT) Cc: freebsd-current@FreeBSD.ORG Reply-To: kc5vdj@prodigy.net X-Windows: R00LZ!@# MS-Winbl0wz DR00LZ!@# X-files: The truth is that the X-Files is fiction X-Republican: The best kind!!! X-Operating-System: FreeBSD 4.0-RELEASE X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG hmmm... I just got a message from chris, he said he will be adding AES/Rijndael to the kernel ASAP... According to the Rijndael spec, it seems to also function as an excellant pseudo-random number generator... You can find this info at: http://www.esat.kuleuven.ac.be/~rijmen/rijndael Section 13.4 of the Rijndael Block Cipher AES Proposal [version 2], describes this functionality. Based on the benchmark times of this process, I don't think it would be a serious performance hit to do this. If it's going to be in the kernel anyway... Just a constructive suggestion. In reply: > In real life, machines don't always get rebooted in a completely > controlled fashion (panic, power failure, etc.). Anything that > makes a reboot longer or less reliable is a definite non-starter. > > I can guarantee you, if the current /dev/random code isn't fixed before > it makes STABLE, folks running servers 24/7 are going to rip it right > out. > > -Ed jim -- All opinions expressed are mine, if you | "I will not be pushed, stamped, think otherwise, then go jump into turbid | briefed, debriefed, indexed, or radioactive waters and yell WAHOO !!! | numbered!" - #1, "The Prisoner" ------------------------------------------------------------------------------ kc5vdj@prodigy.net KC5VDJ - HF to 23cm KC5VDJ@NW0I.#NEKS.KS.USA.NOAM HF/VHF: IC-706MkII VHF/UHF/SHF: IC-T81A KPC3+ & PK-232MBX Grid: EM28px ------------------------------------------------------------------------------ ET has one helluva sense of humor, always anal-probing right-wing schizos! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message