Re: monitoring entropy

H. Peter Anvin (hpa@transmeta.com)
Tue, 14 Oct 1997 13:48:29 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Tomasz Motylewski: "UPDATE: GP in proc_lookupfd with pre-patch-2.0.31-10"
Previous message: Ingo Molnar: "Re: Known memory leaks in 2.0.31-pre-10-2.1 ?"

>
> to defeat pool-draining attacks, what about this solution:
>
> - 'reserved entropy', only for priviledged code (root currently)
> - exposing only the blocking device to nonpriviledged code.
>

I think the first item is plenty. No reason to complicate things by
having a nonstandard file interface.

-hpa

Next message: Tomasz Motylewski: "UPDATE: GP in proc_lookupfd with pre-patch-2.0.31-10"
Previous message: Ingo Molnar: "Re: Known memory leaks in 2.0.31-pre-10-2.1 ?"