AIX openssh patches
Markus Friedl
markus.friedl at informatik.uni-erlangen.de
Thu Jan 20 08:29:41 EST 2000
no. never ever. please don't do this.
netscape+ssl has been broken because of this.
(http://www.cs.berkeley.edu/~daw/my-posts/netscape-cracked)
-markus
On Wed, Jan 19, 2000 at 12:33:55PM -0500, Matt Richards wrote:
> void get_random_bytes(unsigned char *buf, int len)
> {
> +
> + #ifdef USE_SYSRANDOM
> + int index;
> +
> + srandom(time(NULL) + getpid());
> +
> + for (index = 0; index < len+1; index++) {
> + buf[index] = rand()%255;
> + }
> + #else /* USE_SYSRANDOM */
More information about the openssh-unix-dev
mailing list