From owner-freebsd-security@FreeBSD.ORG  Sun Sep 16 14:15:32 2012
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 9F289106566B
	for <freebsd-security@freebsd.org>;
	Sun, 16 Sep 2012 14:15:32 +0000 (UTC)
	(envelope-from markm@FreeBSD.org)
Received: from gromit.grondar.org (grandfather.grondar.org [93.89.92.32])
	by mx1.freebsd.org (Postfix) with ESMTP id 513078FC0A
	for <freebsd-security@freebsd.org>;
	Sun, 16 Sep 2012 14:15:32 +0000 (UTC)
Received: from uucp by gromit.grondar.org with local-rmail (Exim 4.77
	(FreeBSD)) (envelope-from <markm@FreeBSD.org>) id 1TDFY0-0007vQ-HN
	for freebsd-security@freebsd.org; Sun, 16 Sep 2012 15:10:08 +0100
Received: from localhost ([127.0.0.1] helo=groundzero.grondar.org)
	by groundzero.grondar.org with esmtp (Exim 4.77 (FreeBSD))
	(envelope-from <markm@FreeBSD.org>)
	id 1TDFVB-000Eyg-Pr; Sun, 16 Sep 2012 15:07:13 +0100
To: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
In-reply-to: <86fw6iyt9w.fsf@ds4.des.no>
References: <50453686.9090100@FreeBSD.org>
	<20120911082309.GD72584@dragon.NUXI.org>
	<504F0687.7020309@FreeBSD.org> <201209121628.18088.jhb@freebsd.org>
	<5050F477.8060409@FreeBSD.org> <20120912213141.GI14077@x96.org>
	<20120913052431.GA15052@dragon.NUXI.org>
	<alpine.BSF.2.00.1209131258210.13080@ai.fobar.qr>
	<alpine.BSF.2.00.1209141336170.13080@ai.fobar.qr>
	<E1TCXN0-000NFT-7I@groundzero.grondar.org>
	<CAG5KPzwOdCkybj3D5uic1KC-pwW-pewgsrqrXg60f5SJjtzYPw@mail.gmail.com>
	<E1TCbDG-0002Hz-9D@groundzero.grondar.org>
	<CAG5KPzzRxzVX-+9fYjRdqjY-wScbM6AA7GYtLmktgMG0Zg8iyQ@mail.gmail.com>
	<E1TCbSz-0007CJ-BI@groundzero.grondar.org>
	<CAG5KPzyJNmXRfxtPPrdc2zVCsxGtDfJT79YC3a1PNUfOOSzt8A@mail.gmail.com>
	<E1TCcIq-000Brr-Ex@groundzero.grondar.org>
	<CAG5KPzwEESg7iUb2+-kAN+k55M95BZjh5VaSvxzSsSCVuZ9kMw@mail.gmail.com>
	<E1TCdlD-000C1N-4g@groundzero.grondar.org>
	<86fw6iyt9w.fsf@ds4.des.no>
From: Mark Murray <mark@grondar.org>
From: Mark Murray <markm@FreeBSD.org>
Date: Sun, 16 Sep 2012 15:07:13 +0100
Message-Id: <E1TDFVB-000Eyg-Pr@groundzero.grondar.org>
Cc: Arthur Mesh <arthurmesh@gmail.com>,
	Ian Lepore <freebsd@damnhippie.dyndns.org>,
	Doug Barton <dougb@freebsd.org>, Ben Laurie <benl@freebsd.org>,
	freebsd-security@freebsd.org, RW <rwmaillists@googlemail.com>,
	"Bjoern A. Zeeb" <bz@freebsd.org>
Subject: Re: svn commit: r239569 - head/etc/rc.d
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Sep 2012 14:15:32 -0000

=?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= writes:
> Mark Murray <mark@grondar.org> writes:
> > You have to rely on something; Yarrow needs some entropy to cold-start,
> > and on a freshly installed OS, this is rocking-horse shit. This is
> > where BIG problems start because it is at this time that (eg) SSH keys
> > are built. We make some effort to get the user to "kayboard bash", but
> > experience has shown that annoyed users screw up, and annoyed engineers
> > are often worse.
> 
> Look at the code, the "keyboard bash" hasn't worked since someone broke
> it in 2006.

Ah crap, thanks! :-( 

M
--
Mark R V Murray
Pi: 132511160