Re: ssh, /dev/urandom

To: "Alfred M. Szmidt" <ams@kemisten.nu>
Cc: budi@research.indocisc.com, debian-hurd@lists.debian.org
Subject: Re: ssh, /dev/urandom
From: Werner Koch <wk@gnupg.org>
Date: Wed, 18 Dec 2002 17:56:11 +0100
Message-id: <[🔎] 87n0n3466s.fsf@alberti.g10code.de>
Mail-followup-to: "Alfred M. Szmidt" <ams@kemisten.nu>, budi@research.indocisc.com, debian-hurd@lists.debian.org
In-reply-to: <[🔎] plopm37ke7zj83.fsf@drizzt.dyndns.org> (kilobug@freesurf.fr's message of "Wed, 18 Dec 2002 11:58:52 +0100")
References: <[🔎] Pine.LNX.4.44.0212160010130.7859-100000@stephen.copyleft.co.nz> <[🔎] 20021215202705.GB1097@aragorn> <[🔎] 20021215221126.A3963@l2.ponznet.net> <[🔎] E18NirN-0003Ib-00@lgh163a.kemisten.nu> <[🔎] plopm33coye2ld.fsf@drizzt.dyndns.org> <[🔎] E18NwLs-0003fU-00@lgh163a.kemisten.nu> <[🔎] plopm3lm2qc6b1.fsf@drizzt.dyndns.org> <[🔎] E18O0CD-0003pc-00@lgh163a.kemisten.nu> <[🔎] 20021217013456.GA30498@research.indocisc.com> <[🔎] E18OG7n-0004PK-00@lgh163a.kemisten.nu> <[🔎] plopm3k7i84ybe.fsf@drizzt.dyndns.org> <[🔎] 87d6nz626w.fsf@alberti.g10code.de> <[🔎] plopm37ke7zj83.fsf@drizzt.dyndns.org>

On Wed, 18 Dec 2002 11:58:52 +0100, Gaël Le Mignot said:

> This is the current implementation, yes, but /dev/urandom doesn't guarantee
> anything about the "quality" of the random bits. It can be secure, but it

It does.  It even blocks (well, I checked years ago) as long as the
entropy pools has never been filled to 100% then it won't block anymore
(thus the u in ist name).

If you really want to spend time on a intermediate solution, use
libgcrypt and its internal RNG (can be build using a similar scheme as
EGD) to write a /dev/random translator.

> can be pseudo-random too, and any program that use /dev/urandom as a secure
> source of random bits is flawed, so there is absolutely no problem, IMHO,

It depends on the usage of the random.  In many cases a good PRNG with
additional seending is sufficient.  It is even bad to waste precious
entropy for short living keys or padding.


Salam-Shalom,

   Werner

Reply to:

References:
- K1 images - final report?
  - From: Philip Charles <philipc@copyleft.co.nz>
- Re: K1 images - final report?
  - From: Robert Millan <zeratul2@wanadoo.es>
- Re: K1 images - final report?
  - From: pancake <sergipop@mx3.redestb.es>
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: K1 images - final report?
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: K1 images - final report?
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: Budi Rahardjo <budi@research.indocisc.com>
- Re: ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: ssh, /dev/urandom
  - From: Werner Koch <wk@gnupg.org>
- Re: ssh, /dev/urandom
  - From: kilobug@freesurf.fr (Gaël Le Mignot)

Prev by Date: Re: K1 images - final report?
Next by Date: Re: ssh, /dev/urandom
Previous by thread: Re: ssh, /dev/urandom
Next by thread: Re: ssh, /dev/urandom
Index(es):
- Date
- Thread