26 Apr
2010
26 Apr
'10
11:42 a.m.
On 26/04/10 11:47, Mat Johns wrote:
In a very similar manner I use rng-tools to replenish
entropy from
urandom if entropy falls too low, which whilst having the security
hole of being more predictable (especially when consuming below my top
up margin) of has the benefit of real randomness mixed in there.
That's exactly how urandom works but in reverse; that seems a bit of a
bizarre setup to me (reading from urandom will deplete your system
entropy just like random does).
Too many apps read from random when urandom is 'good enough', but in
either situation (yours or reading from urandom) you then can't tell
which data is high-quality, which could be a problem when it is required
(e.g. creating important keys).
Ta
Alex.
--
This message was scanned by Better Hosted and is believed to be clean.
http://www.betterhosted.com