DragonFly BSD
DragonFly users List (threaded) for 2006-01
[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]

Re: where is my randomness?

From: Matthew Dillon <dillon@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 24 Jan 2006 10:09:26 -0800 (PST)

:> and why is openssl happy with this in the first place?  
:> openssh/openssl shouldn't even get to produce a private/public key 
:> pair without randomness?
:Does this mean all DragonFly hosts have the same private/public key?

    It looks like we do have an issue.  Keyboard randomness is still being
    added, but it looks like the interrupt randomness is not... it has to
    be turned on with the rndcontrol utility.  That means the only 
    entropy is going to be the pool hash that occurs when random data is
    read, which is extremely weak.

    I am getting different patterns from /dev/urandom on boot, but the
    results are definitely going to be extremely weak.

    I will work on fixing this today.

					Matthew Dillon 

[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]