[Cryptography] OpenSSL CSPRNG work
Ray Dillinger
bear at sonic.net
Tue Jun 27 23:40:06 EDT 2017
> Thomas may know what he’s talking about, but his advice is based on some tacit assumptions which may not always be true, and which a reasonable person might choose not to accept.
There is no environment in current use where using /dev/urandom more
than a minute after bootup will inconvenience any other process in the
slightest. Refusing to use it in order to avoid a hypothetical problem
that probably won't even occur on those systems is like a garage
refusing to use an air wrench to put on wheels because using one
carelessly might break the wooden spokes of a model-T. Well, that is,
one of the pre-1934 model-T's that had wooden spokes instead of metal.
Bear
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170627/976bc358/attachment.sig>
More information about the cryptography
mailing list