Date: Mon, 17 Jul 2000 08:07:43 +0200 From: Mark Murray <mark@grondar.za> To: "Andrey A. Chernov" <ache@FreeBSD.ORG> Cc: current@FreeBSD.ORG Subject: Re: randomdev entropy gathering is really weak Message-ID: <200007170607.IAA05866@grimreaper.grondar.za> In-Reply-To: <20000716125502.B89979@freebsd.org> ; from "Andrey A. Chernov" <ache@FreeBSD.ORG> "Sun, 16 Jul 2000 12:55:02 MST." References: <20000716125502.B89979@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> > The situation is _worse_; the entropy is minimal, and is _very_ attackable. > > What's wrong about timers for enthropy (I mean high resolution ones)? > Really we need only few bytes of enthropy and can use them to seed RNG for the > first time if no true randomness available. To be joking: MD5 of kernel module > can help too :-) getnanotime() is already extensively used; we just need to force the RNG to reseed once at the beginning. As soon as I'm happy that the code is panic-free, I'll commit it. M -- Mark Murray Join the anti-SPAM movement: http://www.cauce.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200007170607.IAA05866>