Re: /dev/random is hot garbage

To: coypu%sdf.org@localhost
Subject: Re: /dev/random is hot garbage
From: Martin Husemann <martin%duskware.de@localhost>
Date: Sun, 21 Jul 2019 17:28:17 +0200

On Sun, Jul 21, 2019 at 02:41:57PM +0000, coypu%sdf.org@localhost wrote:
> hi,
> 
> since netbsd won't stop using broken setups like xen (which don't
> provide randomness) to build packages, why don't we give up on
> /dev/random entirely?

Replacing the /dev/random device node by a symlink to /dev/urandom sounds
fine. For binaries it is easy to just use the sysctl instead to get high
quality randomness. Are there any shell script like applications that
seriously would require something better than /dev/urandom?

The other issue is the urban rumour that you may want to pull a real random
byte out of /dev/random before using /dev/urandom - maybe we should have
a "aggregate" sysctl doing just that (so applications can get a single byte
real entropy + as many /dev/urandom ones as they like in a single call)?

Martin

Follow-Ups:
- Re: /dev/random is hot garbage
  - From: Taylor R Campbell
- Re: /dev/random is hot garbage
  - From: Greg Troxel

References:
- /dev/random is hot garbage
  - From: coypu

Prev by Date: Re: /dev/random is hot garbage
Next by Date: Re: /dev/random is hot garbage
Previous by Thread: Re: /dev/random is hot garbage
Next by Thread: Re: /dev/random is hot garbage
Indexes:

Home | Main Index | Thread Index | Old Index