On Sun, 19 Aug 2001, Theodore Tso wrote:
> The bottom line is it really depends on how paranoid you want to be,
> and how much and how closely you want /dev/random to reliably replace
> a true hardware random number generator which relies on some physical
> process (by measuring quantum noise using a noise diode, or by
> measuring radioactive decay). For most purposes, and against most
> adversaries, it's probably acceptable to depend on network interrupts,
> even if the entropy estimator may be overestimating things.
Not picking on you Ted, but in the end, people have to remember this
is a configurable option. If you don't want it, don't enable it. In
fact, I believe it's set to be off by default, so just have a
Configure.help entry that says "Don't enable unless you really know what
you're doing."
-Rob Radez
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Thu Aug 23 2001 - 21:00:31 EST