In message <7475.972260746@coconut.itojun.org>, itojun@iijlab.net writes:
>
>>Where will you get the seeds?  That's the really hard part.
>
>	i thought of reseeding by rnd(4) random number device, like
>	every N seconds.
>
>>The right thing to do would be to port yarrow (see www.counterpane.com, 
>>though I don't have the link available just now and I'm offline when 
>>writing this).  Unfortunately, it's filled with lots of DLL-ish things.
>
>	hmm, i'm sure we can strip DLL-ish part off.

The point of yarrow is to do that reseeding in a cryptographically 
sound way.  (I'd frankly rather it ran in user space, of course.)

		--Steve Bellovin