Date: Sat, 23 Jul 2005 07:05:59 +0400 From: Andrey Chernov <ache@FreeBSD.ORG> To: "Greg 'groggy' Lehey" <grog@FreeBSD.ORG> Cc: cvs-src@FreeBSD.ORG, src-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/games/fortune/fortune fortune.c Message-ID: <20050723030559.GA29502@nagual.pp.ru> In-Reply-To: <20050723022138.GX842@wantadilla.lemis.com> References: <200507230146.j6N1koqL061690@repoman.freebsd.org> <20050723015517.GA28428@nagual.pp.ru> <20050723020120.GV842@wantadilla.lemis.com> <20050723020810.GA28712@nagual.pp.ru> <20050723022138.GX842@wantadilla.lemis.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--+HP7ph2BbKc20aGI
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Sat, Jul 23, 2005 at 11:51:38AM +0930, Greg 'groggy' Lehey wrote:
> I suspect that there's a large number of people out there who don't
> want to go to that much trouble just to get rid of Rush Limbaugh. For
Probably it should go to FAQ. Something like that: if you constantly see=20
"Rush Limbaugh" (or some else) quote, it means your /dev/random is not=20
initialized, and you are in great danger, please tune it properly.
Better have visible bad showstopper in that case. You _mask_ the real=20
problem, and it is _very_ dangerous from security point of view (f.e.=20
gnupg use /dev/random too) because /dev/random initialization not becomes=
=20
proper after this commit, only its incorrectnes made hidden.
> course. Would you like to investigate? I've been seeing problems in
> this are for the last few years. And of course, once we can be really
Personally me never see that. Look at the whole random section in=20
/etc/defaults/rc.conf:
entropy_file=3D"/entropy" # Set to NO to disable caching entropy through re=
boots.
# /var/db/entropy-file is preferred if / is not ava=
il.
entropy_dir=3D"/var/db/entropy" # Set to NO to disable caching entropy via =
cron.
entropy_save_sz=3D"2048" # Size of the entropy cache files.
entropy_save_num=3D"8" # Number of entropy cache files to save.
harvest_interrupt=3D"YES" # Entropy device harvests interrupt randomness
harvest_ethernet=3D"YES" # Entropy device harvests ethernet randomness
harvest_p_to_p=3D"YES" # Entropy device harvests point-to-point randomne=
ss
If you set entropy_file=3D"NO", you must have at least=20
/var/db/entropy/saved-entropy.* across reboots. If it fix your fortune=20
problem, please back out your commit and fix /etc/defaults/rc.conf=20
instead.
--=20
http://ache.pp.ru/
--+HP7ph2BbKc20aGI
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (FreeBSD)
iQCVAwUBQuG0F+JgpPLZnQjrAQKr+wQAjoD2pwgBw0B6w2hBv9l7A6o2Qlw6m2Hl
nUnutwyKQwDHveqL04NobKhjBzWQVjnDdrTkAifv5wwwhKNImoT51GXPjIs8Ffjh
4IuTs0QS0w00yvh7JP/n1XJ0x7B1GqKJUFj3vQZ841tBI6OtnoqerUD5uPSQbopX
xr+vkC9dgJ0=
=g335
-----END PGP SIGNATURE-----
--+HP7ph2BbKc20aGI--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050723030559.GA29502>