RE: Sources of entropy - /dev/random problem for network servers

Heusden, Folkert van (f.v.heusden@ftr.nl)
Mon, 9 Apr 2001 13:04:47 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Miquel van Smoorenburg: "Re: build -->/usr/src/linux"
Previous message: Jan-Frode Myklebust: "spurious APIC interrupt on CPU#0"

>> However, only 3 drivers in drivers/net actually set
>> SA_SAMPLE_RANDOM when calling request_irq(). I believe
>> all of them should.
> No, because an attacker can potentially control input and make it
> non-random.
AB> 2. Given that otherwise in at least my application (and machine
AB> without keyboard and mouse can't be too uncommon) there is *no*
AB> entropy otherwise, which is rather easier for a hacker. At least

Put a soundcard in your system and install audio-entropyd.
Works pretty nice.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Miquel van Smoorenburg: "Re: build -->/usr/src/linux"
Previous message: Jan-Frode Myklebust: "spurious APIC interrupt on CPU#0"