Mailinglist Archive: opensuse-bugs (7187 mails)
| < Previous | Next > |
[Bug 356555] udev rule oddity (/dev/random vs urandom)
- From: bugzilla_noreply@xxxxxxxxxx
- Date: Mon, 28 Jan 2008 04:17:10 -0700 (MST)
- Message-id: <20080128111710.E9C4DCC7B0@xxxxxxxxxxxxxxxxxxxxxx>
https://bugzilla.novell.com/show_bug.cgi?id=356555
User chrubis@xxxxxxxxxx added comment
https://bugzilla.novell.com/show_bug.cgi?id=356555#c1
Cyril Hrubis <chrubis@xxxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC|
|security-team@xxxxxxx, chrubis@xxxxxxxxxx,
|
|kernel-maintainers@xxxxxxxxxxxxxxxxxxxxxx
AssignedTo|bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
|kasievers@xxxxxxxxxx
--- Comment #1 from Cyril Hrubis <chrubis@xxxxxxxxxx> 2008-01-28 04:17:10 MST
---
IMHO it's because /dev/random do not use entropy pool ( data gathered from
typing on keyboard, network traffic ... ) more times and if it's empty, read on
/dev/random will block until new random pool is loaded. However /dev/urandom
(unlimited random) does not block and reuse entropy pool more times if needed,
thus there is bigger possibility to get any informations about what you type on
keyboard and so.
But I'm not expert on cryptography. Anybody to correct?
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
User chrubis@xxxxxxxxxx added comment
https://bugzilla.novell.com/show_bug.cgi?id=356555#c1
Cyril Hrubis <chrubis@xxxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC|
|security-team@xxxxxxx, chrubis@xxxxxxxxxx,
|
|kernel-maintainers@xxxxxxxxxxxxxxxxxxxxxx
AssignedTo|bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
|kasievers@xxxxxxxxxx
--- Comment #1 from Cyril Hrubis <chrubis@xxxxxxxxxx> 2008-01-28 04:17:10 MST
---
IMHO it's because /dev/random do not use entropy pool ( data gathered from
typing on keyboard, network traffic ... ) more times and if it's empty, read on
/dev/random will block until new random pool is loaded. However /dev/urandom
(unlimited random) does not block and reuse entropy pool more times if needed,
thus there is bigger possibility to get any informations about what you type on
keyboard and so.
But I'm not expert on cryptography. Anybody to correct?
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
| < Previous | Next > |