Critical EGD handling in 2.1.1p1
Damien Miller
djm at mindrot.org
Mon Jun 26 11:33:10 EST 2000
> [Background: I am playing around with my own "prngd" which replaces EGD
> and rather emulates an "urandom" device (non-blocking, never drained)
> by having an internal openssl-PRNG that is continously reseeded and
> can save seed on close and initialize itself from the seed-file on restart.
> Hence I have slightly other behaviour of my daemon and a lot of restarts...]
You might be interested in Peter Gutmann's paper on entropy collection:
http://www.cs.auckland.ac.nz/~pgut001/pubs/random2.pdf
He analyses a few homegrown random collectors and presents a design
for an improved one.
-d
--
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work)
More information about the openssh-unix-dev
mailing list