Re: ssh, /dev/urandom

To: "Alfred M. Szmidt" <ams@kemisten.nu>
Cc: tb@becket.net, kilobug@freesurf.fr, jbailey@nisa.net, sergipop@mx3.redestb.es, debian-hurd@lists.debian.org
Subject: Re: ssh, /dev/urandom
From: neal@cs.uml.edu (Neal H. Walfield)
Date: 19 Dec 2002 16:10:25 -0500
Message-id: <[🔎] 87vg1pg1fi.fsf@bassanio.walfield.org>
In-reply-to: <[🔎] E18P7dx-0000OC-00@lgh163a.kemisten.nu>
References: <[🔎] E18NwLs-0003fU-00@lgh163a.kemisten.nu> <[🔎] plopm3lm2qc6b1.fsf@drizzt.dyndns.org> <[🔎] E18O0CD-0003pc-00@lgh163a.kemisten.nu> <[🔎] 20021217013456.GA30498@research.indocisc.com> <[🔎] E18OG7n-0004PK-00@lgh163a.kemisten.nu> <[🔎] 20021217153627.A15894@l2.ponznet.net> <[🔎] E18OKGC-0004WP-00@lgh163a.kemisten.nu> <[🔎] plopm3el8g4nec.fsf@drizzt.dyndns.org> <[🔎] E18OKyM-0004Xr-00@lgh163a.kemisten.nu> <[🔎] 87k7i8xy4o.fsf@becket.becket.net> <[🔎] 20021217193421.GB26396@nisa.net> <[🔎] 873cowxq19.fsf@becket.becket.net> <[🔎] 87el8gw846.fsf@bassanio.walfield.org> <[🔎] plopm3hedc6w2e.fsf@drizzt.dyndns.org> <[🔎] E18OS35-0004oC-00@lgh163a.kemisten.nu> <[🔎] 87bs3jgqln.fsf@becket.becket.net> <[🔎] 87wum79etj.fsf@bassanio.walfield.org> <[🔎] 87fzstyee3.fsf@becket.becket.net> <[🔎] E18P6vU-0000IY-00@lgh163a.kemisten.nu> <[🔎] 87lm2lwy9s.fsf@becket.becket.net> <[🔎] E18P7OY-0000KJ-00@lgh163a.kemisten.nu> <[🔎] 878yylwxe3.fsf@becket.becket.net> <[🔎] E18P7dx-0000OC-00@lgh163a.kemisten.nu>

>    1) no ssh
>    2) ssh with no security
> 
>    you have advocated (2), right?  It is that statement which I am
>    arguing against.
> 
> No, I have advocated against including a unsecure random translator.
> You are forgetting the third alternative, making ssh use its own
> random pool.  Assuming that it is possible, if it is possible then
> this is the best solution.

There is a fourth alternative: leave everything the way it is.  If you
need some quality entropy copy it from e.g. a GNU/Linux system.

Reply to:

Follow-Ups:
- Re: ssh, /dev/urandom
  - From: Jeff Bailey <jbailey@nisa.net>

References:
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: K1 images - final report?
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: K1 images - final report?
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: Budi Rahardjo <budi@research.indocisc.com>
- Re: ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: pancake <sergipop@mx3.redestb.es>
- Re: ssh, /dev/urandom (was: Re: K1 images - final report?)
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: ssh, /dev/urandom
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: Jeff Bailey <jbailey@nisa.net>
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: neal@cs.uml.edu (Neal H. Walfield)
- Re: ssh, /dev/urandom
  - From: kilobug@freesurf.fr (Gaël Le Mignot)
- Re: ssh, /dev/urandom
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: neal@cs.uml.edu (Neal H. Walfield)
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>
- Re: ssh, /dev/urandom
  - From: tb@becket.net (Thomas Bushnell, BSG)
- Re: ssh, /dev/urandom
  - From: "Alfred M. Szmidt" <ams@kemisten.nu>

Prev by Date: Re: ssh, /dev/urandom
Next by Date: Re: ssh, /dev/urandom
Previous by thread: Re: ssh, /dev/urandom
Next by thread: Re: ssh, /dev/urandom
Index(es):
- Date
- Thread