svn commit: r239569 - head/etc/rc.d
    Xin Li 
    delphij at delphij.net
       
    Tue Sep 11 21:22:18 UTC 2012
    
    
  
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 09/11/12 14:17, David O'Brien wrote:
> On Tue, Sep 11, 2012 at 02:04:42PM -0700, Xin Li wrote:
>> So if I was to implement the low grade part I'd remove the
>> variable names from the sysctl output at minimum.
> 
> 
> I've removed the MIB names in my latest diff (based on input from
> this thread):
> 
> +	( dmesg; kenv; df -ib; \ +	    ps -fauxrH -o
> majflt,minflt,nivcsw,nvcsw,nwchan,re,sl,time; \ +	    sysctl -n
> kern.cp_times kern.geom kern.lastpid kern.timecounter \ +
> kern.tty_nout kern.tty_nin vm vfs debug dev.cpu; \ +	    date ) \ +
> | /sbin/sha256 -q | dd of=/dev/random bs=8k 2>/dev/null
Hmm, but this sha256 run will turn the output to 65 bytes (hex
representation of 256 bits of hash output, 64 bytes, and one \n), so,
only 256 bits of random data, is that intentional?
> I don't believe I've sent out an updated diff yet.  The above is
> updated from what sent in Message-ID:
> <20120910135218.GA68128 at dragon.NUXI.org>.
> 
Cheers,
- -- 
Xin LI <delphij at delphij.net>    https://www.delphij.net/
FreeBSD - The Power to Serve!           Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBCAAGBQJQT6uHAAoJEG80Jeu8UPuzoSAH/ROw9YCNLAFz49CUK3Gw1B9A
vohMcD2oGB+wHm37a4UBtCpKPvstp6K5rvPNun95gCxSDK7geofmSD9OPk9w++U0
/40LJfo+ACdfK8T6rI1ENp6vRwP9k9cMc4690WQCvmWnu05aNqes6SFLzB+FXQ8c
pkFdZPZ7lusmx9Wub30wJiPHkfQukvO3mWJ6HnHmhl4O1f4vK1jrj4yZQLu4bO+r
xoAAwRzRR1q50BaL0v/9eLdZmQH8eVAUwqzHaGQbpbIkdg8uUuPWA925JRC5skCl
X5p0E+h/RTGIyzYsbBYSUu1DJmohcTxcWAGpeuBcV5+B1W7H8hIVvEwdumhYSSM=
=NOew
-----END PGP SIGNATURE-----
    
    
More information about the freebsd-security
mailing list