[28439] in North American Network Operators' Group
Re: ABOVE.NET SECURITY TRUTHS?
daemon@ATHENA.MIT.EDU (Deepak Jain)
Sat Apr 29 16:18:35 2000
Date: Sat, 29 Apr 2000 16:15:43 -0400 (EDT)
From: Deepak Jain <deepak@ai.net>
To: Joshua Goodall <joshua@roughtrade.net>
Cc: "Steven M. Bellovin" <smb@research.att.com>,
Chris Cappuccio <chris@dqc.org>,
"Mr. James W. Laferriere" <babydr@baby-dragons.com>,
"Greene, Dylan" <DGreene@navisite.com>,
"'Paul Froutan'" <pfroutan@rackspace.com>, rmeyer@mhsc.com,
nanog@merit.edu
In-Reply-To: <Pine.BSF.4.21.0004290910540.9834-100000@juice.shallow.net>
Message-ID: <Pine.BSF.4.21.0004291614090.27218-100000@aries.ai.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
>
> This statement is a litle too broad. I would contest that the design of,
> say, FreeBSD's /dev/random permits sufficient entropy collection to
> usefully initialise a strong hashing algorithm with a non-predictable
> vector.
Okay, you know where I was going. Simple question - where are you
finding entropy in a FreeBSD machine? (sufficient being a very relative
term)
Not intending to scare anyone.
Deepak Jain
AiNET
