Date: Sun, 28 Nov 1999 11:33:50 -0800 (PST) From: Kris Kennaway <kris@hub.freebsd.org> To: Dan Moschuk <dan@FreeBSD.ORG> Cc: Warner Losh <imp@village.org>, freebsd-audit@FreeBSD.ORG Subject: Re: Last random PID patch before commit Message-ID: <Pine.BSF.4.21.9911281126580.80171-100000@hub.freebsd.org> In-Reply-To: <19991128142407.B33514@november.jaded.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 28 Nov 1999, Dan Moschuk wrote: > The only problem with the /dev/random stream is that it will not have > sufficient entropy built up by the time the arc4_init() is likely to > be called, at bootup. Have you tested this? I repeat, even if there was zero entropy in the pool, seeding with time + /dev/random (i.e. what arc4random() does in openbsd, and probably ours too) it is as strong as your current seeding. If you even have 1 bit, it becomes better. > Not to say that the way I initialize it is any better, but it will work until > "The best" solution can be found. The existing arc4random() reseeds every 128 calls, which means that, at worst, the first 128 pids you spawn will be weakly random. Under your current system, every process spawned by the system forever is weakly random. Kris ---- Just remember, as you celebrate Thanksgiving with your family feasts of turkey, cranberries, stuffing, gravy, mashed potatoes, squash, corn, cornbread, apples, pickles, dumplings, fish, orangutans, fruitbats, breakfast cereals, and so forth, to keep in mind the true reason for the season: The birth of Santa. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.9911281126580.80171-100000>