How hard could it be to just get a simple random number? Stop over-complicating it. When it comes to security, any generator that is purely based on software is a bad idea, so for anyone who actually cares about something "truly" random ought to resort to other solutions anyway.
It's really not hard or expensive to get a totally unpredictable number. Leave /dev/random alone.
-
I look forward to it as I currently have to install
rng-tools, haveged, and change defaults to use urandom.Leave a comment:
-
Security is not easy. And not easy at all when changing almost the whole LRNG in a way that's not break anything existing. Needs also to take care of all low-entropy IoT devices in addition to misbehaving user space applications reading directly from /dev/random which may block.Originally posted by topolinik View PostThe 35th release and still not merged?
Well, I warmly wish this a better fate than GNU HURD
Leave a comment:
-
The 35th release and still not merged?
Well, I warmly wish this a better fate than GNU HURD
Leave a comment:
-
It will be eventually merged because without it LRNG does not meet new FIPS requirements in next year summer.Leave a comment:
-
New /dev/random Implementation Hits 35th Revision
Phoronix: New /dev/random Implementation Hits 35th Revision
Going on for more than four years now has been creating a new /dev/random implementation and this Friday marks the 35th revision to this big set of patches that aim for better performance and security...
http://www.phoronix.com/scan.php?pag...-dev-random-35
Leave a comment: