CVS commit: src

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src
From: "Taylor R Campbell" <riastradh%netbsd.org@localhost>
Date: Fri, 30 Jun 2023 21:44:09 +0000

Module Name:    src
Committed By:   riastradh
Date:           Fri Jun 30 21:44:09 UTC 2023

Modified Files:
        src/etc/defaults: rc.conf
        src/share/man/man5: rc.conf.5

Log Message:
rc.conf(5): Set entropy=wait by default.

We no longer block indefinitely -- if nothing else, the hardclock
timer should yield enough samples to unblock /dev/random on all but
the most severely deterministic machines -- so it should be generally
safe for availability to set entropy=wait.

This doesn't guarantee that HWRNG/seed has been provided before you
run ssh-keygen or call getentropy(3) in a user application, but it
does raise the security above netbsd<=9.

PR security/55659
PR lib/56905

XXX pullup-10


To generate a diff of this commit:
cvs rdiff -u -r1.163 -r1.164 src/etc/defaults/rc.conf
cvs rdiff -u -r1.192 -r1.193 src/share/man/man5/rc.conf.5

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS import: src/external/bsd/openpam/dist
Next by Date: CVS commit: src/lib/libc
Previous by Thread: CVS import: src/external/bsd/openpam/dist
Next by Thread: CVS commit: src/lib/libc
Indexes:

Home | Main Index | Thread Index | Old Index