Subject: Re: rpc xid randomness
To: None <>
From: Jun-ichiro itojun Hagino <>
List: tech-security
Date: 09/07/2003 05:10:24
> > 	given horsepower of today's machine the computation overhead is
> > 	smaller than the benefit we'll get. (well, some of you run pdp10,
> > 	but don't you want your pdp10 be secure against id predictability
> > 	attacks?)
> Perhaps good analogy might be - would you randomize phone
> number allocation?

	when someone can tap the wire and impersonate you by caller ID,
	story goes very different.