DragonFly users List (threaded) for 2006-01
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]

Re: where is my randomness?

From:	joerg@xxxxxxxxxxxxxxxxx
Date:	Tue, 24 Jan 2006 19:50:49 +0100
Mail-followup-to:	users@crater.dragonflybsd.org

On Tue, Jan 24, 2006 at 10:17:25AM -0800, Matthew Dillon wrote:
>    I have an idea on how to address the issue.  The reason why interrupt
>    randomness was not turned on by default was due to the loss in 
>    performance due to lack of rate limiting on the calculations.

That's not the only reason. A network interrupt for example can be
triggered remotely, resulting in a certain amount of known input,
thereby reducing the entropy of the data.

I don't think the current situation for urandom is that bad, but it
means that e.g. ssh keys are generated very slowly. The pool does
measure how much estimated entropy is left after all.

Joerg

References:
- where is my randomness?
  - From: Simon 'corecode' Schubert
- Re: where is my randomness?
  - From: nida
- Re: where is my randomness?
  - From: Matthew Dillon

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]