cvs commit: src/sys/modules/random Makefile src/sys/dev/random harvest.c hash.c hash.h nehemiah.c nehemiah.h probe.c randomdev.c randomdev.h randomdev_soft.c randomdev_soft.h yar

Colin Percival colin.percival at
Sat Apr 10 01:40:04 PDT 2004

At 09:27 10/04/2004, Bruce M Simpson wrote:
>I'm inclined to trust your judgement here on this, Mark, but Nate does have
>a valid point; we need to be sure that the entropy sources are of sufficiently
>high quality or we risk compromising the system.

  Is there any reason we can't just have an rc.conf variable
entropy_trust_the_spooks = "YES"
which allows users to choose between optimal performance and
possible problems if the entropy source isn't as good as the
vendor claims?

Colin Percival

More information about the cvs-src mailing list