From: Alan Cox <alan@lxorguk.ukuu.org.uk>
To: Chris Peterson <cpeterso@cpeterso.com>
Cc: netdev@vger.kernel.org, linux-kernel@vger.kernel.org
Subject: Re: [PATCH] [resend] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM
Date: Thu, 29 May 2008 11:49:41 +0100 [thread overview]
Message-ID: <20080529114941.099d8e2c@core> (raw)
In-Reply-To: <Pine.LNX.4.62.0805282319090.19567@ikari.dreamhost.com>
On Wed, 28 May 2008 23:23:26 -0700 (PDT)
Chris Peterson <cpeterso@cpeterso.com> wrote:
>
> Remove network drivers' last few uses of theoretically-exploitable network
> entropy. Only 12 net drivers are affected. Headless boxes should use a
> more secure source of entropy, such as the userspace daemons rngd, clrngd,
> egd, audio_entropyd, and/or video_entroyd.
>
> I'm also thinking about writing a "Frankenstein" daemon that combines the
> entropy-collecting algorithms from those daemons into one. Whereas rngd
> only uses /dev/hw_random, my hypothetical daemon would make a best effort
> attempt: use /dev/hw_random if it exists, otherwise fallback (or use in
> addition) the other entropy sources.
>
>
> Signed-off-by: Chris Peterson <cpeterso@cpeterso.com>
Acked-by: Alan Cox <alan@redhat.com>
next prev parent reply other threads:[~2008-05-29 11:03 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-05-29 6:23 [PATCH] [resend] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM Chris Peterson
2008-05-29 10:49 ` Alan Cox [this message]
[not found] <ayJOq-3EJ-15@gated-at.bofh.it>
2008-05-29 12:41 ` Martin Wilck
-- strict thread matches above, loose matches on Subject: below --
2008-06-14 5:48 Chris Peterson
2008-06-14 9:43 ` Jeff Garzik
2009-05-13 5:34 Chris Peterson
2009-05-13 6:08 ` Matt Mackall
2009-05-13 7:17 ` Chris Peterson
2009-05-13 14:25 ` Matt Mackall
2009-05-13 19:39 ` Jeff Garzik
2009-05-13 19:55 ` Matt Mackall
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20080529114941.099d8e2c@core \
--to=alan@lxorguk.ukuu.org.uk \
--cc=cpeterso@cpeterso.com \
--cc=linux-kernel@vger.kernel.org \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.