Re: K1 images - final report?

To: kilobug@freesurf.fr
Cc: sergipop@mx3.redestb.es, debian-hurd@lists.debian.org
Subject: Re: K1 images - final report?
From: "Alfred M. Szmidt" <ams@kemisten.nu>
Date: Mon, 16 Dec 2002 15:36:12 +0100
Message-id: <[🔎] E18NwLs-0003fU-00@lgh163a.kemisten.nu>
In-reply-to: <[🔎] plopm33coye2ld.fsf@drizzt.dyndns.org> (kilobug@freesurf.fr)
References: <[🔎] Pine.LNX.4.44.0212160010130.7859-100000@stephen.copyleft.co.nz> <[🔎] 20021215202705.GB1097@aragorn> <[🔎] 20021215221126.A3963@l2.ponznet.net> <[🔎] E18NirN-0003Ib-00@lgh163a.kemisten.nu> <[🔎] plopm33coye2ld.fsf@drizzt.dyndns.org>

   And ? It's  a temporary solution that allow user to  use an ssh client
   and/or server, which  is very usefull. You just have  to add a debconf
   warning saying that the entropy  source is unsafe, and asking the user
   to pay attention. We don't need more for now, since anyway no Hurd box
   will be used in a critical environement in a near future.

It is a temporary solution, but it is also the wrong solution.  It is
just as unsafe as copying libc.so to /dev/urandom.  A false sense of
security is worse than no security.  If a user needs urandom that
badly, they can install it on their own.

Reply to:

Follow-Ups:
- Re: K1 images - final report?
  - From: kilobug@freesurf.fr (Gaël Le Mignot)

References:
- K1 images - final report?
  - From: Philip Charles <philipc@copyleft.co.nz>
- Re: K1 images - final report?
  - From: Robert Millan <zeratul2@wanadoo.es>
- Re: K1 images - final report?
  - From: pancake <sergipop@mx3.redestb.es>
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: K1 images - final report?
  - From: kilobug@freesurf.fr (Gaël Le Mignot)

Prev by Date: Re: Induced crashes
Next by Date: Re: K1 images - final report?
Previous by thread: Re: K1 images - final report?
Next by thread: Re: K1 images - final report?
Index(es):
- Date
- Thread