RE: Sources of entropy - /dev/random problem for network servers

• Next message: Anton Altaparmakov: "Q: process concurrency and sigaction()"
• Previous message: Jan-Frode Myklebust: "spurious APIC interrupt on CPU#0"
• Maybe in reply to: Alex Bligh - linux-kernel: "Sources of entropy - /dev/random problem for network servers"
• Next in thread: idalton@ferret.phonewave.net: "Re: Sources of entropy - /dev/random problem for network servers"
• Reply: idalton@ferret.phonewave.net: "Re: Sources of entropy - /dev/random problem for network servers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>> However, only 3 drivers in drivers/net actually set
>> SA_SAMPLE_RANDOM when calling request_irq(). I believe
>> all of them should.
> No, because an attacker can potentially control input and make it
> non-random.
AB> 2. Given that otherwise in at least my application (and machine
AB> without keyboard and mouse can't be too uncommon) there is *no*
AB> entropy otherwise, which is rather easier for a hacker. At least

Put a soundcard in your system and install audio-entropyd.
Works pretty nice.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Anton Altaparmakov: "Q: process concurrency and sigaction()"
• Previous message: Jan-Frode Myklebust: "spurious APIC interrupt on CPU#0"
• Maybe in reply to: Alex Bligh - linux-kernel: "Sources of entropy - /dev/random problem for network servers"
• Next in thread: idalton@ferret.phonewave.net: "Re: Sources of entropy - /dev/random problem for network servers"
• Reply: idalton@ferret.phonewave.net: "Re: Sources of entropy - /dev/random problem for network servers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Apr 15 2001 - 21:00:11 EST