Re: RFC/PATCH: Random pid generation

From: Mike Porter (mike@UDel.Edu)
Date: Thu Jan 13 2000 - 15:36:29 EST

Next message: Keith Owens: "Re: request_module rehash"
Previous message: Richard Zidlicky: "Re: bug: kernel timer added twice at c8032807"
In reply to: Chris Evans: "Re: RFC/PATCH: Random pid generation"
Next in thread: Khimenko Victor: "Re: RFC/PATCH: Random pid generation"
Reply: Khimenko Victor: "Re: RFC/PATCH: Random pid generation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> WRT the security issues; predictable pids have always assisted the cause
> of the cracker. Any extra difficulty we can generate is always
> useful. Obviously it's only worth considering for 32bit pids not 16bit.
>
> Cheers
> Chris

If you are going to use random pids to help prevent crackers from
guessing the next pid, then the method used to generate the random
numbers needs to be cryptographically secure. From what I
understand, this is pretty non-trivial (see: Yarrow at
http://www.counterpane.com/).

Mike

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Keith Owens: "Re: request_module rehash"
Previous message: Richard Zidlicky: "Re: bug: kernel timer added twice at c8032807"
In reply to: Chris Evans: "Re: RFC/PATCH: Random pid generation"
Next in thread: Khimenko Victor: "Re: RFC/PATCH: Random pid generation"
Reply: Khimenko Victor: "Re: RFC/PATCH: Random pid generation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Jan 15 2000 - 21:00:23 EST