From owner-cvs-all Fri Jan 12 23:58: 2 2001 Delivered-To: cvs-all@freebsd.org Received: from gratis.grondar.za (grouter.grondar.za [196.7.18.65]) by hub.freebsd.org (Postfix) with ESMTP id 33E7637B401; Fri, 12 Jan 2001 23:57:36 -0800 (PST) Received: from grondar.za (root@gratis.grondar.za [196.7.18.133]) by gratis.grondar.za (8.11.1/8.11.1) with ESMTP id f0D7urI19437; Sat, 13 Jan 2001 09:56:54 +0200 (SAST) (envelope-from mark@grondar.za) Message-Id: <200101130756.f0D7urI19437@gratis.grondar.za> To: Warner Losh Cc: Matt Dillon , Jordan Hubbard , Sheldon Hearn , obrien@FreeBSD.org, Doug Barton , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc crontab rc src/etc/defaults rc.conf src/etc/mtree BSD.root.dist src/libexec Makefile src/libexec/save-entropy Makefile save-entropy.sh References: <200101120652.f0C6qls78578@harmony.village.org> In-Reply-To: <200101120652.f0C6qls78578@harmony.village.org> ; from Warner Losh "Thu, 11 Jan 2001 23:52:47 MST." Date: Sat, 13 Jan 2001 09:56:49 +0200 From: Mark Murray Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > In message <200101120644.f0C6hvI12630@gratis.grondar.za> Mark Murray writes: > : > I would do the following: > : > > : > * Use Warner's fix, possibly adding 'dmesg' output in phase-1. > : > : It make more sense to make the random device nonblocking-at-boot than > : to do this. > > Maybe we could make it non-blocking until the first write to > /dev/random? This would solve the problems that we're seeing, as well > as allowing sshd to have enough entropy to get good results. Actually, the whole _point_ of Yarrow is that it is free-running (we have been over this point *many* times). If you really want it to be free running from nanosecond-zero, when it is in a known state, I can make it so. M -- Mark Murray Warning: this .sig is umop ap!sdn To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message