[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[gnutls-dev] Re: Feature request: not really random session keys
From: |
Simon Josefsson |
Subject: |
[gnutls-dev] Re: Feature request: not really random session keys |
Date: |
Mon, 30 Jan 2006 17:51:01 +0100 |
User-agent: |
Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux) |
Florian Weimer <address@hidden> writes:
>> Some OSes don't have a /dev/random or worse a predictable one (some OS X).
>> Thus we need to do it on our own to be portable.
>
> Then you need a special daemon. However, I would like to avoid the
> additional administrative overhead on systems where the kernel can be
> fixed.
Hear, hear.
Moving this complexity away from applications (GnuTLS, GNU SASL,
Shishi, ...) seem like something very useful. Simply moving it to an
external daemon is good enough, improving /dev/random on Linux would
be an optimization.
Should we write a simple daemon 'grngd', based on libgcrypt, and start
to use it? That should be simple. It should likely register two
sockets, one suitable for short-term session keys and one for
long-term keys, matching /dev/urandom and /dev/random.
Is there any point for us to look at EGD?
I think I'll take up on this exercise soon.
Thanks.
- Re: [gnutls-dev] Feature request: not really random session keys, (continued)
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Andreas Metzler, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Werner Koch, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys,
Simon Josefsson <=
- Re: [gnutls-dev] Re: Feature request: not really random session keys, Werner Koch, 2006/01/31
- Re: [gnutls-dev] Feature request: not really random session keys, Werner Koch, 2006/01/31
Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Florian Weimer, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Florian Weimer, 2006/01/30
- [gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30
- Re: [gnutls-dev] Re: Feature request: not really random session keys, Werner Koch, 2006/01/31