From owner-cvs-src@FreeBSD.ORG Sun Jul 24 14:06:05 2005 Return-Path: X-Original-To: cvs-src@FreeBSD.org Delivered-To: cvs-src@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DFB7F16A41F; Sun, 24 Jul 2005 14:06:05 +0000 (GMT) (envelope-from phk@phk.freebsd.dk) Received: from haven.freebsd.dk (haven.freebsd.dk [130.225.244.222]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E39243D53; Sun, 24 Jul 2005 14:06:05 +0000 (GMT) (envelope-from phk@phk.freebsd.dk) Received: from phk.freebsd.dk (unknown [192.168.48.2]) by haven.freebsd.dk (Postfix) with ESMTP id 417D0BC89; Sun, 24 Jul 2005 14:06:03 +0000 (UTC) To: Pawel Jakub Dawidek From: "Poul-Henning Kamp" In-Reply-To: Your message of "Sun, 24 Jul 2005 15:57:38 +0200." <20050724135738.GM46538@darkness.comp.waw.pl> Date: Sun, 24 Jul 2005 16:06:02 +0200 Message-ID: <64009.1122213962@phk.freebsd.dk> Sender: phk@phk.freebsd.dk Cc: cvs-src@FreeBSD.org, src-committers@FreeBSD.org, "Andrey A. Chernov" , cvs-all@FreeBSD.org, Colin Percival Subject: Re: cvs commit: src/games/fortune/fortune fortune.c X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jul 2005 14:06:06 -0000 In message <20050724135738.GM46538@darkness.comp.waw.pl>, Pawel Jakub Dawidek writes: >We should probably test entropy quality on boot. >I've somewhere userland version of /sys/dev/rndtest/ which implements >FIPS140-2 tests for (P)RNGs. We can use put it into rc.d/ and warn users. We also need to put code into exec(2) to verify that the binary we're about to execute does not suffer from Turings halting problem (ie: contains no endless loops) We might as well inspect for buffer overflows at the same time. Anyway, back in this universe: We should not stick a lot of stuff into our boot-time scripts, they are slow enough already. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.