2009/12/10 Marcus Meissner <meissner@suse.de>:
On Mon, Dec 07, 2009 at 11:58:02AM +0000, Rob OpenSuSE wrote:
I have taken an interest in Fate #306591 https://features.opensuse.org/306591 Andreas Jaeger has mused on community volunteer to package something. Now, I took a look at few suggestions, but 2 of them weren't "just work" in sense that they required webcam or mic, which seems like a possible can of worms to me.
Most of the stuff running in the system is not a good enough random source.
Geting input from a true noise source would be more helpful, like from TPMs.
Yes, perhaps if the kernel team have drivers for TPM & TRNG's their high quality source of entropy could be incorporated. Unfortunately any contribution I make on this feature, needs to be less ambitious if I am to get a positive result in a reasonable amount of time. Perhaps an ability to configure the daemon for reading from an SSL socket, or a local device, for better entropy sources where they are available, would allow incorporation of such sources? Mixed in with clock jitter and system events, even a central daemon reading from CDR of prepared random numbers, is likely to be a practical solution to the problem, for a network of diskless hosts. As it stands, yes, I could put a mic near my fan outlet, I can use a webcam, but they have potential privacy concerns, in addition to being in way of normal use of the machine. That's the core reason I'm looking from the EGD system files and clock jitter angle at moment. Thanks for the feedback, any attempt to provide entropy from user space needs scrutiny due to the security implications Rob -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org