Re: How to use /dev/srandom

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Kevin Chadwick

Date: Monday, October 4, 2010 - 9:21 am

>Then of course the tiiiny tiiiny problem of defining in code how to
quoted text>_prove_ that the input
>is random. Proving some input is skewed in one of 123 ways is easy and
>relatively fast,
>but proving that the input data will never fail a statistical test is..
>Hard.

If a situation is possible where a certain device starts doing a ton of
work in a highly regular fashion that the entropy gathering code
doesn't dismiss and so affects the entropy, then I can see this being
useful, but if that was possible which I doubt, then maybe the entropy
gathering should be improved. 

Or do you mean a tool that can alert and so pause actions like ssl if
highly sensitive, which may be useful but it was stated that arandom is
like a duracell bunny on john smiths bitter and won't drain the entropy.

quoted text>>It is more efficient.  There is almost always enough entropy for
>>arandom, and if there isn't, you would have a hard time detecting
>>that.

I would be interested what effect an attacker purposefully draining the
entropy could have (Ted's comment suggests little, but you never know)
and if your proposed tool could detect and warn of that.

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Re: How to use /dev/srandom, Theo de Raadt, (Wed Sep 29, 10:16 am)

Re: How to use /dev/srandom, Daniel Gracia, (Thu Sep 30, 2:37 am)

Re: How to use /dev/srandom, Massimo Lusetti, (Fri Oct 1, 1:45 am)

Re: How to use /dev/srandom, Joachim Schipper, (Fri Oct 1, 3:12 am)

Re: How to use /dev/srandom, Kevin Chadwick, (Mon Oct 4, 4:28 am)

Re: How to use /dev/srandom, Janne Johansson, (Mon Oct 4, 4:33 am)

Re: How to use /dev/srandom, Kevin Chadwick, (Mon Oct 4, 6:43 am)

Re: How to use /dev/srandom, Chris Palmer, (Mon Oct 4, 9:14 am)

Re: How to use /dev/srandom, Kevin Chadwick, (Mon Oct 4, 9:21 am)

Re: How to use /dev/srandom, Janne Johansson, (Mon Oct 4, 11:21 am)

Re: How to use /dev/srandom, Brad Tilley, (Mon Oct 4, 11:26 am)

Re: How to use /dev/srandom, Janne Johansson, (Mon Oct 4, 11:34 am)

Re: How to use /dev/srandom, Brad Tilley, (Mon Oct 4, 11:55 am)


linux-kernel:
Ken Chen	[patch] sched: fix inconsistency when redistribute per-cpu tg->cfs_rq shares.
Nick Piggin	Re: [PATCH 2/2] smp_call_function: use rwlocks on queues rather than rcu
Kyle Moffett	Re: [PATCH 1/4] stringbuf: A string buffer implementation
Ingo Molnar	Re: [PATCH 00/12] mm/x86: bootmem
Andrew Morton	Re: [patch 1/5] wait: use lock bitops for __wait_on_bit_lock
git:
Stephen Boyd	Re: [PATCH] Speed up bash completion loading
Jakub Narebski	Re: Avery Pennarun's git-subtree?
Junio C Hamano	Re: [PATCH v2 04/13] Teach rebase interactive the mark command
Catalin Marinas	Re: [ANNOUNCE] Stacked GIT 0.14.2
Eric Wong	[PATCH 5/5] rerere: add the diff command
git-commits-head:
Linux Kernel Mailing List	[POWERPC] fsl_soc: add support to gianfar for fixed-link property
Linux Kernel Mailing List	fat: fix parse_options()
Linux Kernel Mailing List	ipmi: add oem message handling
Linux Kernel Mailing List	powerpc/85xx/86xx: Fix build w/ CONFIG_PCI=n
Linux Kernel Mailing List	KVM: x86 emulator: during rep emulation decrement ECX only if emulation succeeded
linux-netdev:
Paweł Staszewski	Re: DCA/IOAT problem
Jarek Poplawski	Re: [PATCH iproute2] Re: HTB accuracy for high speed
Ingo Oeser	Re: [NET-NEXT PATCH 3/3] e1000e: add support for new 82574L part
Rick Jones	Re: UDP path MTU discovery
Dmitry Kozlov	Re: [PATCH v8] PPTP: PPP over IPv4 (Point-to-Point Tunneling Protocol)
openbsd-misc:
David Vasek	Re: how to undelete?
Gruppo BCC	Banca inviato una notifica che e necessario completare
Pau Amaro-Seoane	Re: First install: Grub doesn't find partitions
Nick Holland	Re: Unattended OpenBSD Installation
stuart van Zee	Re: CVS hosed