Re: rc.d/rndctl

To: "Brian A. Seklecki" <lavalamp%spiritual-machines.org@localhost>
Subject: Re: rc.d/rndctl
From: Thor Lancelot Simon <tls%rek.tjls.com@localhost>
Date: Wed, 17 Sep 2008 22:33:30 -0400

On Wed, Sep 17, 2008 at 03:58:51PM -0400, Brian A. Seklecki wrote:
> All:
> 
> I was about to assemble a PR to submit an etc/rc.d/rndctl to enable
> various default sources at run time.  I wanted to get some community
> feedback on what are sound default RNG sources (net, disk, rng, etc.)

There *are* defaults, they're built into the kernel.  They used to be
sane -- have they been changed so that they no longer are?

Do not enable 'net' entropy estimation by default.  On a fileserver, you
don't want to estimate from 'disk' either -- it is too well correlated
with 'net'.

Thor

Follow-Ups:
- Re: rc.d/rndctl
  - From: Brian A. Seklecki

References:
- rc.d/rndctl
  - From: Brian A. Seklecki

Prev by Date: rc.d/rndctl
Next by Date: Re: rc.d/rndctl
Previous by Thread: rc.d/rndctl
Next by Thread: Re: rc.d/rndctl
Indexes:

Home | Main Index | Thread Index | Old Index