Re: no entropy and no output at /dev/random (quick question)

From: Horst von Brand
Date: Tue Nov 30 2004 - 07:53:25 EST

Next message: Helge Hafting: "Re: Designing Another File System"
Previous message: stanojr: "Re: quota deadlock"
In reply to: Theodore Ts'o: "Re: no entropy and no output at /dev/random (quick question)"
Next in thread: Javier Villavicencio: "Re: no entropy and no output at /dev/random (quick question)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

daw@xxxxxxxxxxxxxxxxxxxxxxxx (David Wagner) said:
> Javier Villavicencio wrote:
> >it's encouraged to use /dev/urandom instead of /dev/random?

> Yes, for almost all purposes, applications should use /dev/urandom,
> not /dev/random. (The names for these devices are unfortunate.)

To seed a random number generator, never directly.

> Sadly, many applications fail to follow these rules, and consequently
> /dev/random's entropy pool often ends up getting depleted much faster
> than it has to be.

Reading /dev/urandom depletes exactly the same pool, it just doesn't block
when the pool is empty. As said pool has other uses, indiscriminate reading
of either can DoS other parts of the system.
--
Dr. Horst H. von Brand User #22616 counter.li.org
Departamento de Informatica Fono: +56 32 654431
Universidad Tecnica Federico Santa Maria +56 32 654239
Casilla 110-V, Valparaiso, Chile Fax: +56 32 797513
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Helge Hafting: "Re: Designing Another File System"
Previous message: stanojr: "Re: quota deadlock"
In reply to: Theodore Ts'o: "Re: no entropy and no output at /dev/random (quick question)"
Next in thread: Javier Villavicencio: "Re: no entropy and no output at /dev/random (quick question)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]