[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Uses too much entropy (Debian Bug #343085)
From: |
Marc Haber |
Subject: |
Re: Uses too much entropy (Debian Bug #343085) |
Date: |
Fri, 4 Jan 2008 21:18:36 +0100 |
User-agent: |
Mutt/1.5.13 (2006-08-11) |
On Fri, Jan 04, 2008 at 08:40:44PM +0100, Simon Josefsson wrote:
> Interesting, 235/8=29.375 bytes. The minimum randomness needed per TLS
> session would be 28 bytes for client hello random_bytes plus 46 bytes
> for the PreMasterSecret (if RSA is used for key exchange). If openssl
> is using /dev/urandom, I think it is overly optimistic about the quality
> of that data.
I suspect that it only uses data from /dev/u?random to seed its own
PRNG.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190
- Re: Uses too much entropy (Debian Bug #343085), (continued)
- Re: Uses too much entropy (Debian Bug #343085), Matthias Urlichs, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Uses too much entropy (Debian Bug #343085),
Marc Haber <=
- Re: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/05
- Re: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/05