Re: insufficient entropy for rnd

To: Daniel Carosone <dan%geek.com.au@localhost>
Subject: Re: insufficient entropy for rnd
From: itojun%iijlab.net@localhost
Date: Wed, 13 Aug 2003 11:14:22 +0900

>It is the reason device-type net is disabled by default, and it's
>not a serious risk. Anyone who can predict the arrival time of a
>network packet interrupt (and subsequent processing) within the
>precision of a CPU cycle counter has enough control over your
>machine that randomness is irrelevant.

        my understanding was that it is not a problem with "who can predict the
        arrival time of a network packet interrupt", but "arrival time of
        network packet interrupt may not be random enough" (like every 1
        second).  anyways precision of clock device used by rnd(4) would be
        a important factor here.

itojun

Follow-Ups:
- Re: insufficient entropy for rnd
  - From: Perry E. Metzger

References:
- Re: insufficient entropy for rnd
  - From: Daniel Carosone

Prev by Date: Re: insufficient entropy for rnd
Next by Date: Re: insufficient entropy for rnd
Previous by Thread: Re: insufficient entropy for rnd
Next by Thread: Re: insufficient entropy for rnd
Indexes:

Home | Main Index | Thread Index | Old Index