Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL

To: debian-devel@lists.debian.org
Subject: Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
From: Johannes Schauer <j.schauer@email.de>
Date: Fri, 18 Jul 2014 14:03:06 +0200
Message-id: <[🔎] 20140718120306.31130.41027@hoothoot>
Mail-followup-to: debian-devel@lists.debian.org,
In-reply-to: <[🔎] 87vbqxawj0.fsf@windlord.stanford.edu>
References: <[🔎] 20140711220627.24261.14073.reportbug@spruce.wiehl.oeko.net> <[🔎] 20140716020647.GA13456@cassiel.pault.ag> <[🔎] 53C6CA6E.1050308@pyro.eu.org> <[🔎] 87ha2hcch6.fsf@windlord.stanford.edu> <[🔎] 1405541576.2453.69.camel@deadeye.wl.decadent.org.uk> <[🔎] 87vbqxawj0.fsf@windlord.stanford.edu>

Hi,

Quoting Russ Allbery (2014-07-16 22:17:23)
> Ben Hutchings <ben@decadent.org.uk> writes:
> > On Wed, 2014-07-16 at 12:47 -0700, Russ Allbery wrote:
> >> It would be nice to have a reliable kernel interface for getting
> >> randomness rather than relying on proper chroot configuration.
> > There is such an interface.  It happens to be a char device.  Expecting
> > administrators to create /dev/urandom in a chroot is no more unreasonable
> > than expecting them to create /dev/null or /dev/zero.
> I'm not a big fan of that either.  :)  Also, I think it's relatively rare for
> a library to require those devices exist for secure behavior, although
> perhaps I'm just not knowledgable in this area.

maybe this will help in the future:

http://lists.openwall.net/linux-kernel/2014/07/17/235

cheers, josch

Reply to:

Follow-Ups:
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Theodore Ts'o <tytso@mit.edu>

References:
- Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Toni Mueller <support@oeko.net>
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Paul Tagliamonte <paultag@debian.org>
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Steven Chamberlain <steven@pyro.eu.org>
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Russ Allbery <rra@debian.org>
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Ben Hutchings <ben@decadent.org.uk>
- Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: Where to upload official OpenStack Debian images?
Next by Date: Bug#755163: ITP: liburi-nested-perl -- module for handling nested URIs
Previous by thread: Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
Next by thread: Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
Index(es):
- Date
- Thread