From owner-freebsd-current@FreeBSD.ORG  Wed Apr 14 10:38:37 2004
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id D9EB716A4CE; Wed, 14 Apr 2004 10:38:37 -0700 (PDT)
Received: from avalon.linuxpowered.com (avalon.linuxpowered.com
	[64.246.60.115])	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 85C9843D49; Wed, 14 Apr 2004 10:38:37 -0700 (PDT)
	(envelope-from diz@linuxpowered.com)
Received: from linuxpowered.com (txirvcom-itnfw01.verizon.com
	[::ffff:192.76.54.20])  (AUTH: CRAM-MD5 diz@linuxpowered.com)
	by avalon.linuxpowered.com with esmtp;
	Wed, 14 Apr 2004 12:46:38 -0500
Message-ID: <407D76F2.3020202@linuxpowered.com>
Date: Wed, 14 Apr 2004 12:37:54 -0500
From: masta <diz@linuxpowered.com>
Organization: wifibsd.org
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US;
	rv:1.6) Gecko/20040113
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Robert Watson <rwatson@FreeBSD.ORG>
References: <Pine.NEB.3.96L.1040414003014.60370E-100000@fledge.watson.org>
In-Reply-To: <Pine.NEB.3.96L.1040414003014.60370E-100000@fledge.watson.org>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: Mark Murray <markm@FreeBSD.ORG>
cc: Chuck Swiger <cswiger@mac.com>
cc: freebsd-current@FreeBSD.ORG
Subject: Re: dev/random
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Apr 2004 17:38:38 -0000

Robert Watson wrote:

>On Tue, 13 Apr 2004, Chuck Swiger wrote:
>
>  
>
>>>Consider a PC in a University's PC access hall/lab. Would you (paranoid
>>>as you are!) trust _anything_ on that machine's hard disk?
>>>      
>>>
>>I'm not paranoid...they really are out to get me.  :-) [1]
>>
>>Anyway, in the circumstances pertaining to this thread, aren't we
>>talking about diskless clients in a university lab, and an
>>access-controlled fileserver locked away in a rack somewhere which has
>>the disks? 
>>    
>>
>
>I have to say that if you're loading your kernel out of TFTP, and your
>root file system is running out of NFS, the chances are you won't mind
>loading /entropy out of NFS.
>
>  
>
Why? We got a NFSv4 client in base.
Not that this is a highly-likely situation today, I'm just saying anyways.

>Sounds like a tunable is called for that can be turned on in that
>environment, and possible a console warning if the system is stalled >1
>second during boot waiting on entropy...
>
>Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
>robert@fledge.watson.org      Senior Research Scientist, McAfee Research
>
>  
>