Theodore Tso wrote:
On Tue, Dec 18, 2007 at 01:43:28PM +1030, David Newall wrote:
On a server, keyboard and mouse are rarely used. As you've described it,
that leaves only the disk, and during the boot process, disk accesses and
timing are somewhat predictable. Whether this is sufficient to break the
RNG is (clearly) a matter of debate.
In normal operaiton, entropy is accumlated on the system, extracted
via /dev/urandom at shutdown, and then loaded back into the system
when it boots up.
Thus, the entropy saved at shutdown can be known at boot-time. (You can
examine the saved entropy on disk.)
If you have a server, the best thing you can do is use a hardware
random number generator, if it exists. Fortunately a number of
hardware platforms, such as IBM blades and Thinkpads, come with TPM
modules that include hardware RNG's. That's ultimately the best way
to solve these issues.
Just how random are they? Do they turn out to be quite predictable if
you're IBM?
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- References:
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
- Re: /dev/urandom uses uninit bytes, leaks user data
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
