Re: [Fwd: Re: FreeBSD Security Advisory FreeBSD-SA-03:12.openssh]

From: Michael Sierchio (kudzu_at_tenebras.com)
Date: 09/19/03

  • Next message: Andrej (Andy) Brodnik: "Re: Sendmail vulnerability"
    Date: Fri, 19 Sep 2003 13:58:12 -0700
    To: freebsd-security@freebsd.org
    
    

    Bruce M Simpson wrote:

    >>Question, since I haven't looked at the code -- does it honor the
    >>/dev/crypto interface? Since, if a HW RBG is included in a crypto
    >>device, it should be used to help stir the pot.
    >
    > Stacy Millions had a driver in the works to support the Intel i8xx FWH
    > HW RNG. As far as I know it hasn't been committed, I'd certainly like
    > to see this code updated.

    Good. On linux, where /dev/random comes from, there is no (or was no)
    rndcontrol. The standard sources of entropy were keyboard and mouse.
    Very funny for a rackmount server, you can run out of random bits in
    a hurry.

    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"


  • Next message: Andrej (Andy) Brodnik: "Re: Sendmail vulnerability"