Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
* Henrique de Moraes Holschuh:
>> It's not so much a time issue, is a question of storage (or getting that
>> data to the OpenSSH server). A networked service would be feasible, but
>> it would also allow some sort of traffic analysis.
>
> I did mean putting a lot of brain grease on it. Math might shorten the
> need for a monstrous lookup table quite a bit, since randomness is not
> an issue anymore.
Yes, good point. However, some cryptographic hashing is still involved,
so this might be a rather difficult thing to do.
Reply to: