Random source seeding and /etc/rc.d/sshd host key generation
From: Ed Maste (emaste_at_phaedrus.sandvine.ca)
Date: 03/29/05
- Previous message: Eric Anderson: "Re: Periodic security find pruning"
- Next in thread: Brooks Davis: "Re: Random source seeding and /etc/rc.d/sshd host key generation"
- Reply: Brooks Davis: "Re: Random source seeding and /etc/rc.d/sshd host key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 28 Mar 2005 17:00:22 -0500 To: freebsd-current@freebsd.org
In /etc/rc.d/sshd, user_reseed() does
seeded=`sysctl -n kern.random.sys.seeded 2>/dev/null`
if [ "${seeded}" != "" ] ; then
warn "Setting entropy source to blocking mode."
echo "===================================================="
echo "Type a full screenful of random junk to unblock"
...
I'm curious if checking the seeded sysctl against "" is intentional;
it seems $seeded will always be non-null. Since user_reseed only
gets called if the host keys don't exist it probably won't be much
of an issue in practice, but it seems random junk will be requested
on the first boot even if the entropy source is already seeded.
-ed
_______________________________________________
freebsd-current@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"
- Previous message: Eric Anderson: "Re: Periodic security find pruning"
- Next in thread: Brooks Davis: "Re: Random source seeding and /etc/rc.d/sshd host key generation"
- Reply: Brooks Davis: "Re: Random source seeding and /etc/rc.d/sshd host key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
