Re: Randomness [was: Re: WARNING pseudorandom rekeying]

To: Justin Cormack <justin%specialbusservice.com@localhost>
Subject: Re: Randomness [was: Re: WARNING pseudorandom rekeying]
From: Fredrik Pettai <pettai%nordu.net@localhost>
Date: Wed, 15 Jan 2014 17:14:31 +0100

On Jan 15, 2014, at 10:21 , Justin Cormack 
<justin%specialbusservice.com@localhost> wrote:
> On Wed, Jan 15, 2014 at 8:47 AM, Fredrik Pettai <pettai%nordu.net@localhost> 
> wrote:
>> 
>> While at the topic randomness, would be good if NetBSD could implement an 
>> ioctl like Linux RNDADDENTROPY?
>> This helps to increase the randomness by importing & inserting from other 
>> random sources, like the YubiHSM etc.
> 
> It does, RNDADDDATA. However you might want to write a driver, as the
> ioctl does not add to the entropy count (because userspace is
> untrusted).

Or perhaps a simpler idea would be to add a sysctl option that gives you a 
choice whether it should accept entropy from userspace or not?

/P

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

Follow-Ups:
- Re: Randomness
  - From: Havard Eidnes

References:
- Re: WARNING pseudorandom rekeying
  - From: Emmanuel Dreyfus
- Re: WARNING pseudorandom rekeying
  - From: Jean-Yves Migeon
- Randomness [was: Re: WARNING pseudorandom rekeying]
  - From: Fredrik Pettai
- Re: Randomness [was: Re: WARNING pseudorandom rekeying]
  - From: Justin Cormack

Prev by Date: Re: Little problem with local time.
Next by Date: Re: Randomness [was: Re: WARNING pseudorandom rekeying]
Previous by Thread: Re: Randomness [was: Re: WARNING pseudorandom rekeying]
Next by Thread: Re: Randomness
Indexes:

Home | Main Index | Thread Index | Old Index