Date: Sat, 10 Apr 2004 09:39:58 +0100 From: Colin Percival <colin.percival@wadham.ox.ac.uk> To: Bruce M Simpson <bms@spc.org> Cc: Nate Lawson <nate@root.org> Subject: Re: cvs commit: src/sys/modules/random Makefile src/sys/dev/random harvest.c hash.c hash.h nehemiah.c nehemiah.h probe.c randomdev.c randomdev.h randomdev_soft.c randomdev_soft.h yar Message-ID: <6.0.1.1.1.20040410093354.07d96008@imap.sfu.ca> In-Reply-To: <20040410082705.GR710@empiric.dek.spc.org> References: <20040409103618.A48723@root.org> <200404091834.i39IYi0w060497@grimreaper.grondar.org> <20040410082705.GR710@empiric.dek.spc.org>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:27 10/04/2004, Bruce M Simpson wrote: >I'm inclined to trust your judgement here on this, Mark, but Nate does have >a valid point; we need to be sure that the entropy sources are of sufficiently >high quality or we risk compromising the system. Is there any reason we can't just have an rc.conf variable entropy_trust_the_spooks = "YES" which allows users to choose between optimal performance and possible problems if the entropy source isn't as good as the vendor claims? Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.1.1.1.20040410093354.07d96008>