Re: Uses too much entropy (Debian Bug #343085)

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Uses too much entropy (Debian Bug #343085)

From:	Nikos Mavrogiannopoulos
Subject:	Re: Uses too much entropy (Debian Bug #343085)
Date:	Fri, 4 Jan 2008 13:55:48 +0200

> > A workaround might be to use the libgcrypt's random number process
> > feature which uses a single server process to feed other processes
> > with entropy (I've never worked with it so I don't know if it can be
> > used in that case). This might solve this issue.
>
> Disagree.
>
> * /dev/(u)random is more difficult to subvert than a daemon.
>
> * The kernel has access to more sources of randomness.

I don't understand these comments. The libgcrypt's generator can be
used in a separate processes. It doesn't mean it gathers any entropy
except for using /dev/urandom as usual.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Bug#448775: Uses too much entropy (Debian Bug #343085), (continued)

Prev by Date: Re: Uses too much entropy (Debian Bug #343085)
Next by Date: Re: Interoperability issues (Debian Bug #348046)
Previous by thread: Re: Uses too much entropy (Debian Bug #343085)
Next by thread: Re: Uses too much entropy (Debian Bug #343085)
Index(es):
- Date
- Thread