Subject: Re: CVS commit: src/sbin/newfs
To: None <firstname.lastname@example.org>
From: Perry E. Metzger <email@example.com>
Date: 09/04/2003 09:18:30
David Laight <firstname.lastname@example.org> writes:
> Module Name: src
> Committed By: dsl
> Date: Wed Sep 3 17:09:01 UTC 2003
> Modified Files:
> src/sbin/newfs: mkfs.c
> Log Message:
> Randomise di_igen for the first 2 blocks of inodes for non-UFS2 filesystems.
> Randomise di_igen for "/" (and lost+found) for UFS2 filesystems.
Am I correct in stating you are using random() for this!? random() is
not even remotely secure enough for a security critical purpose. Its a
linear congruential generator, and not even a good one.