login
Search
Rick Jones wrote:The issue is with being externally observable and controllable, or, with some irq mitigation schemes, be made /too regular/. Interrupts (or timed mitigation events) may be triggered by the outside world, which makes it a very short path from remote attacker to local kernel entropy pool. Finally, with severe load, there are little or no interrupts thanks to heavy mitigation, which means your entropy pool may be externally DoS'd. Or at the very least, when your entropy needs to be INCREASED (due to heavy workload due to heavy traffic), your incoming entropy DECREASES due to decreased interrupts. [I just realized that last one. Heck, I'm even convincing myself even more its a bad idea] Jeff -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
| Parag Warudkar | BUG: soft lockup - CPU#1 stuck for 15s! [swapper:0] |
| Tarkan Erimer | Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3 |
| Greg Kroah-Hartman | [PATCH 010/196] Chinese: add translation of Codingstyle |
| Andrew Morton | -mm merge plans for 2.6.23 |
git: | |
| Gerrit Renker | [PATCH 24/37] dccp: Processing Confirm options |
| David Miller | Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock(). |
| Alexey Dobriyan | Re: [GIT]: Networking |
| david | Re: iptables very slow after commit 784544739a25c30637397ace5489eeb6e15d7d49 |
