Re: default sshd host keys

To: tech-security%netbsd.org@localhost
Subject: Re: default sshd host keys
From: Alan Barrett <apb%cequrux.com@localhost>
Date: Fri, 5 Oct 2012 13:43:10 +0200

On Thu, 04 Oct 2012, Matthew Mondor wrote:

Why would you expect to have a /var/db/entropy-file while the system is
running?


I simply assumed it should be there by the looks
of /etc/rc.d/random_seed, where the load function doesn't delete the
file.  If the file is removed afterwards as a security measure I'm all
for it, though.

The rndctl(8) man page documents that rndctl -L deletes the file.However, it might make sense for /etc/rc.d/random_seed to verifythat the file has been deleted, or to unconditionally use "rm -f"in case the file was not deleted.


--apb (Alan Barrett)

References:
- default sshd host keys
  - From: Taylor R Campbell
- Re: default sshd host keys
  - From: David Laight
- Re: default sshd host keys
  - From: Matthew Mondor
- Re: default sshd host keys
  - From: Thor Lancelot Simon
- Re: default sshd host keys
  - From: Matthew Mondor

Prev by Date: Re: default sshd host keys
Next by Date: Re: default sshd host keys
Previous by Thread: Re: default sshd host keys
Indexes:

Home | Main Index | Thread Index | Old Index