Re: Bug#448775: Uses too much entropy (Debian Bug #343085)

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bug#448775: Uses too much entropy (Debian Bug #343085)

From:	Werner Koch
Subject:	Re: Bug#448775: Uses too much entropy (Debian Bug #343085)
Date:	Fri, 04 Jan 2008 12:25:54 +0100
User-agent:	Gnus/5.110007 (No Gnus v0.7)

On Fri,  4 Jan 2008 10:59, address@hidden said:

> This is mostly a question for libgcrypt developers, but I believe
> libgcrypt initializes the PRNG in a more conservative way.

Right, we even implement failsafe methods in case /dev/random does not
work like expected.  In fact we don't know ehther /dev/random is a good
RNG or not.  There is no serious study on the quality of /dev/random and
in the past we have seen major over-estimations on the available
entropy.

The problem with exim is that it does not use a random seed file which
greatly helps libgcrypt to initializes its internal pool.  I recall that
we discussed this quite some time ago.  I just looked at the current Sid
source of Exim and I can't find any call to libgcrypt.  IIRC, gnutls
does not cope with global libcgrypt setting and thus there is no saving
of a seend file.  

Exim should properly intialize libgcrypt and create a random seed file.


Salam-Shalom,

   Werner


-- 
Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.

[Prev in Thread]

Current Thread

[Next in Thread]

Uses too much entropy (Debian Bug #343085), Marc Haber, 2008/01/02
- Re: Uses too much entropy (Debian Bug #343085), Nikos Mavrogiannopoulos, 2008/01/04
  - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Nikos Mavrogiannopoulos, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch <=
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Florian Weimer, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Florian Weimer, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/08
    - Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/30

Prev by Date: Re: Problems with specific certificate/key (Debian Bug #426013)
Next by Date: Re: Uses too much entropy (Debian Bug #343085)
Previous by thread: Re: Bug#448775: Uses too much entropy (Debian Bug #343085)
Next by thread: Re: Bug#448775: Uses too much entropy (Debian Bug #343085)
Index(es):
- Date
- Thread