Date: Sun, 24 Jul 2005 16:06:02 +0200 From: "Poul-Henning Kamp" <phk@phk.freebsd.dk> To: Pawel Jakub Dawidek <pjd@FreeBSD.org> Cc: cvs-src@FreeBSD.org, src-committers@FreeBSD.org, "Andrey A. Chernov" <ache@FreeBSD.org>, cvs-all@FreeBSD.org, Colin Percival <cperciva@freebsd.org> Subject: Re: cvs commit: src/games/fortune/fortune fortune.c Message-ID: <64009.1122213962@phk.freebsd.dk> In-Reply-To: Your message of "Sun, 24 Jul 2005 15:57:38 %2B0200." <20050724135738.GM46538@darkness.comp.waw.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20050724135738.GM46538@darkness.comp.waw.pl>, Pawel Jakub Dawidek writes: >We should probably test entropy quality on boot. >I've somewhere userland version of /sys/dev/rndtest/ which implements >FIPS140-2 tests for (P)RNGs. We can use put it into rc.d/ and warn users. We also need to put code into exec(2) to verify that the binary we're about to execute does not suffer from Turings halting problem (ie: contains no endless loops) We might as well inspect for buffer overflows at the same time. Anyway, back in this universe: We should not stick a lot of stuff into our boot-time scripts, they are slow enough already. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?64009.1122213962>