Re: "random PID" - worth to be considered (again) ?
From: Ted Ts'o
Date: Mon Jul 09 2012 - 12:17:27 EST
On Mon, Jul 09, 2012 at 03:53:14PM +0200, Toralf Förster wrote:
> After reading [1] I'm wondering whether these would at least improve
> OpenSSL's implementation of a RSA key generator (page 13 in [1]) ?
Random PID's is a terribly way to get entropy into OpenSSL. You don't
get that many bits of entropy that way, and what bits of randomness
you get is coming from /dev/urandom. So improving the randomness of
/dev/urandom is what's important.
Regards,
- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/