[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: /dev/random for FreeBSD [was: Re: /dev/random for Linux]
-----BEGIN PGP SIGNED MESSAGE-----
In article <[email protected]>,
Mark Murray <[email protected]> wrote:
> Something I didn't mention earlier; we felt that letting the unwashed
> masses read /dev/*random was not a good idea, as they could deplete
> the pool of entropy all to easily for attack purposes.
That's really just a DOS attack, isn't it? An application that needs
true randomness should be using /dev/random, which you can slow but not
disturb, and an application that is using /dev/urandom should be ok with
less than full entropy.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----