[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 4187-1] linux security update

On 04/05/2018 04:06, Paul Wise wrote:
On Thu, May 3, 2018 at 4:53 PM, richard lucassen wrote:

There is also an big increase in time before random is initialized:
One of the consequences is that openntpd (or a program like
rdate) hangs until the crng is initialized.

What do these two programs require entropy for?


Integrates the latest secure API advances from OpenBSD such as getentropy(2), arc4random(3) (a fail-safe CSRNG that works in chroot environments), and reallocarray(3) (an integer overflow-checking malloc/calloc/realloc replacement).[1]

you can read more detail on NTP RFC[2]


[1] http://www.openntpd.org/features.html
[2] https://www.ietf.org/rfc/rfc1305.txt

Reply to: