Re: Hardened OpenSSL fork

To: debian-devel@lists.debian.org
Subject: Re: Hardened OpenSSL fork
From: daThorsten Glaser <tg@debian.org>
Date: Mon, 28 Apr 2014 17:10:48 +0000 (UTC)
Message-id: <[🔎] loom.20140428T190937-569@post.gmane.org>
References: <[🔎] 53540CF1.5000109@pyro.eu.org> <[🔎] 20140420212629.GA23374@roeckx.be> <[🔎] 535476AC.2050702@pyro.eu.org> <[🔎] 20140421082106.GA31964@roeckx.be> <[🔎] 53555B57.9090709@pyro.eu.org>

Steven Chamberlain <steven <at> pyro.eu.org> writes:

> I'd say the code still looks quite 'portable' in that it is ANSI C and
> isn't using kernel-specific features.  arc4random is just a library
> routine from their libc and I see no reason it can't be borrowed.

No, it’s more.

And after sysctl() got removed from Linux, the concept of arc4random
is not applicable to Linux any more.

Let alone Hurd.

bye,
//mirabilos

PS: arc4random using RC4 can be made immune against all known attacks
    against RC4.

Reply to:

References:
- Hardened OpenSSL fork
  - From: Steven Chamberlain <steven@pyro.eu.org>
- Re: Hardened OpenSSL fork
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: Hardened OpenSSL fork
  - From: Steven Chamberlain <steven@pyro.eu.org>
- Re: Hardened OpenSSL fork
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: Hardened OpenSSL fork
  - From: Steven Chamberlain <steven@pyro.eu.org>

Prev by Date: Re: what to do with wayland, python3, gdm3/systemd, ...
Next by Date: Re: debconf reconfiguration from postinst of another package
Previous by thread: Re: Hardened OpenSSL fork
Next by thread: Re: Hardened OpenSSL fork
Index(es):
- Date
- Thread