[hafqa] [hafqa] [Bug 2770] /dev/urandom produces predicatble data just after boot
From: bugzilla-daemon at maemo.org bugzilla-daemon at maemo.orgDate: Sat Jun 14 13:18:47 EEST 2008
- Previous message: [hafqa] [Bug 2770] /dev/urandom produces predicatble data just after boot
- Next message: [hafqa] [Bug 2770] /dev/urandom produces predicatble data just after boot
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
https://bugs.maemo.org/show_bug.cgi?id=2770 ------- Comment #5 from mb at bu3sch.de 2008-06-14 13:18 GMT+3 ------- (In reply to comment #4) > arch/arm/configs/nokia_2420_defconfig:# CONFIG_HW_RANDOM is not set You're exactly right. The software RNG is neither seeded, nor is the HWRNG loaded. So the entropy sources on the device are _very_ bad at the moment, especially right after boot. The random numbers are predictable right after boot before the user uses the device (I _guess_ the touchscreen contributes to the entropy pool via interrupts). This might lead to security issues in security related tools (SSHD) that start in the initscripts and rely on random numbers. I didn't research whether there might be security issues, though. -- Configure bugmail: https://bugs.maemo.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.
- Previous message: [hafqa] [Bug 2770] /dev/urandom produces predicatble data just after boot
- Next message: [hafqa] [Bug 2770] /dev/urandom produces predicatble data just after boot
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]