On Wed, 18 Oct 2000, Sandy Harris wrote:
> So methinks the questions are whether /dev/random can get one bit of
> unknowable-by-the-enemy entropy per packet passing through a gateway
> and whether it would estimate entropy sufficiently conservatively in
> this case. If both answers are yes, please apply the patch.
I'm not sure it is possible to answer this globally, without studying the
hardware characteristics of the specific network interfaces involved.
> I'd still like to see the patch applied, though. I'd like /dev/random
> to work well "out of the box" on the FreeS/WAN gateways people are
> building out of older surplus hardware.
Agreed... but "out of the box" should mean, as shipped with the Linux
distributions. I don't want to get *us* involved in second-guessing the
author of /dev/random. The thing to do with the patch is to send it to
Ted and ask *him* to put it in.
Henry Spencer
henry@spsystems.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Oct 23 2000 - 21:00:13 EST