Re: use of RDRAND in $random_library

To: Thorsten Glaser <tg@mirbsd.org>
Cc: debian-devel@lists.debian.org
Subject: Re: use of RDRAND in $random_library
From: Kurt Roeckx <kurt@roeckx.be>
Date: Thu, 12 Jun 2014 21:19:06 +0200
Message-id: <[🔎] 20140612191906.GA9124@roeckx.be>
In-reply-to: <[🔎] alpine.DEB.2.10.1406121014170.17794@tglase.lan.tarent.de>
References: <[🔎] 20140611165859.GA15063@kitenet.net> <[🔎] 20140611224541.GA12701@jtriplet-mobl1> <[🔎] alpine.DEB.2.10.1406121014170.17794@tglase.lan.tarent.de>

On Thu, Jun 12, 2014 at 10:23:58AM +0200, Thorsten Glaser wrote:
> On Wed, 11 Jun 2014, Josh Triplett wrote:
> 
> device is inferiour to the random devices on OpenBSD/MirBSD, so you
> should seed the aRC4 state with additional random bytes:

As far as I know, OpenBSD stopped using (A)RC4 for their random
number generation for good reason, even though the function is
still called that way.  You now seems to suggest to use RC4 again,
which seems like a bad idea to me.

Kurt

Reply to:

Follow-Ups:
- Re: use of RDRAND in $random_library
  - From: Guillem Jover <guillem@debian.org>
- Re: use of RDRAND in $random_library
  - From: Thorsten Glaser <tg@mirbsd.de>

References:
- use of RDRAND in $random_library
  - From: Joey Hess <joeyh@debian.org>
- Re: use of RDRAND in $random_library
  - From: Josh Triplett <josh@joshtriplett.org>
- Re: use of RDRAND in $random_library
  - From: Thorsten Glaser <tg@mirbsd.org>

Prev by Date: Re: holes in secure apt
Next by Date: Re: holes in secure apt
Previous by thread: Re: use of RDRAND in $random_library
Next by thread: Re: use of RDRAND in $random_library
Index(es):
- Date
- Thread