Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption

To: Izumi Tsutsui <tsutsui%ceres.dti.ne.jp@localhost>
Subject: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
From: Thor Lancelot Simon <tls%panix.com@localhost>
Date: Sun, 4 Mar 2012 00:00:44 -0500

On Sat, Mar 03, 2012 at 11:57:39PM -0500, Thor Lancelot Simon wrote:
> 
> Using less entropy while providing better security cannot possibly be
> a bad thing, no matter what platform you're on.

To be clear, when I say "better security" I refer specifically to
the OpenBSD-specific hack in OpenSSL that keys the OpenSSL RNG with
nothing but arc4random() output.  Other platforms do not have this
issue.

Thor

References:
- Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Thor Lancelot Simon
- Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Izumi Tsutsui
- Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Thor Lancelot Simon

Prev by Date: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Next by Date: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Previous by Thread: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Next by Thread: 6.0 BETA: Any updates/workarounds on __cerror issue?
Indexes:

Home | Main Index | Thread Index | Old Index