kern.randompid: jot generation senseful?

Jahilliya jahilliya at gmail.com
Tue May 9 13:19:13 UTC 2006


On 5/9/06, No at SPAM@mgEDV.net <nospam at mgedv.net> wrote:
>
> [asked on -security before, but no answer, maybe here's more traffic ;-)]
>
> hi,
>
> is a random pid generation really a security enhancement?
>
> if yes, would it make sense to setup something like:
> --> sysctl kern.randompid=`jot -r 1 500 2000`
> in cron to be executed every X mins/hrs?
>
> and finally, what are the recommended minimum (security)
> and maximum (performance) values for kern.randompid?


You can't change it once the system is running me thinks, so you'd run it at
boot and that'd be that...


More information about the freebsd-questions mailing list