Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?

To: debian-devel@lists.debian.org
Subject: Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?
From: John Hasler <john@dhh.gt.org>
Date: Sun, 04 Jan 2004 16:15:01 -0600
Message-id: <[🔎] 87d69zqs2i.fsf@toncho.dhh.gt.org>
In-reply-to: <[🔎] 20040104194253.GA15389@bunuel.tii.matav.hu> ( Magosányi Árpád's message of "Sun, 4 Jan 2004 19:42:53 +0000")
References: <200312181128.NAA12752@home.ntrl.net> <[🔎] 200401042231.40765.russell@coker.com.au> <[🔎] 20040104115924.GA8139@steve.org.uk> <[🔎] 200401042304.16073.russell@coker.com.au> <[🔎] 20040104130152.GC32523@nenya.lan> <[🔎] 20040104194253.GA15389@bunuel.tii.matav.hu>

Magosányi Árpád writes:
> If we are low on entropy, there are several things that can help:
> -an "entropy friendly" /dev/?random for "not so important for security"
> programs[1].

Your "not so important for security" programs will suck up all the entropy
via /dev/urandom and then keep going, running on what they get from the prng.
Meanwhile, the important programs that were depending on /dev/random will
be stalled, waiting for the entropy pool to refill.

Perhaps the kernel should cut /dev/urandom off from the entropy pool when
it reaches some low-water mark. 
-- 
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI

Reply to:

Follow-Ups:
- Re: [debian-devel] Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Magosányi Árpád <mag@bunuel.tii.matav.hu>

References:
- Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Russell Coker <russell@coker.com.au>
- Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Steve Kemp <skx@debian.org>
- Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Russell Coker <russell@coker.com.au>
- Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Richard Atterer <richard@list04.atterer.net>
- Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?
  - From: Magosányi Árpád <mag@bunuel.tii.matav.hu>

Prev by Date: Re: Bug#225999: ITP: debsync -- installed packages synchronization tool
Next by Date: Re: Controlling what's in the archive (Re: MIA, Incompetent and holiday-loving maintainers)
Previous by thread: Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?
Next by thread: Re: [debian-devel] Re: [debian-devel] Re: SSP for Debian unstable. was Re: security enhanced debian branch?
Index(es):
- Date
- Thread