[Cryptography] [RNG] /dev/random initialisation
tytso at mit.edu
tytso at mit.edu
Tue Oct 29 04:07:28 EDT 2013
On Mon, Oct 28, 2013 at 06:04:01PM -0400, Theodore Ts'o wrote:
> (There is another problem caused by proprietary binary drivers from
> !@#@! proprietary chips from a company whose name shall remain
> starting with the letter Q, forcing some home routers to still be
> using ancient, years-old 2.6 kernels, but that's not a problem under
> my control. Said 2.6 kernels probably have huge numbers of zero-day
> flaws, some of which might allow a remote adversary to be able to
> execute a buffer overflow attack in kernel space, making flaws in the
> random number generator somewhat irrelevant...)
One addendum. Some insecurities may be brought to you by the letter
'B', and not just 'Q'....
- Ted
More information about the cryptography
mailing list