tech-security: Re: add rnd(4) to install floppy

Subject: Re: add rnd(4) to install floppy
To: None <david@l8s.co.uk>
From: Jun-ichiro itojun Hagino <itojun@itojun.org>
List: tech-security
Date: 09/05/2003 19:54:15

> > % pwd
> > /usr/home/itojun/NetBSD/src/sys.1/arch/i386/compile/INSTALL_TINY
> > % ls -l net*
> > -rwxr-xr-x  1 itojun  itojun  2872912 Sep  5 19:06 netbsd.nornd
> > -rwxr-xr-x  1 itojun  itojun  2881415 Sep  5 19:05 netbsd.withrnd
> > % gzip -9 netbsd.nornd
> > % gzip -9 netbsd.withrnd
> > % ls -l net*
> > -rwxr-xr-x  1 itojun  itojun  619246 Sep  5 19:06 netbsd.nornd.gz
> > -rwxr-xr-x  1 itojun  itojun  623277 Sep  5 19:05 netbsd.withrnd.gz
> > 
> > 	4K increase after gzip.  do we have room for this?
> 
> No!

	well, then, we should probably put some code into sysinst that warns
	user like "password entries are created with weak random number, you
	will not want to configure root password during this installation
	session" for kernels without rnd(4).

itojun