From: "Michael Kerrisk (man-pages)" <mtk.manpages-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
To: Heinrich Schuchardt <xypron.glpk-Mmb7MZpHnFY@public.gmane.org>
Cc: mtk.manpages-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org,
linux-man-u79uwXL29TY76Z2rM5mHXA@public.gmane.org,
Theodore Ts'o <tytso-3s7WtUTddSA@public.gmane.org>
Subject: Re: [PATCH 1/1] random.4: mention PRNG used by urandom
Date: Sat, 10 Jan 2015 14:34:18 +0100 [thread overview]
Message-ID: <54B12A5A.1050808@gmail.com> (raw)
In-Reply-To: <1417042709-16767-1-git-send-email-xypron.glpk-Mmb7MZpHnFY@public.gmane.org>
On 11/26/2014 11:58 PM, Heinrich Schuchardt wrote:
> /dev/urandom uses a pseudo random number generator to replace
> missing entropy.
Thanks, Heinrich. Applied.
Cheers,
Michael
> Signed-off-by: Heinrich Schuchardt <xypron.glpk-Mmb7MZpHnFY@public.gmane.org>
> ---
> man4/random.4 | 5 +++--
> 1 file changed, 3 insertions(+), 2 deletions(-)
>
> diff --git a/man4/random.4 b/man4/random.4
> index 44d9e34..1be19b8 100644
> --- a/man4/random.4
> +++ b/man4/random.4
> @@ -63,8 +63,9 @@ will be set to
> .LP
> A read from the \fI/dev/urandom\fP device will not block
> waiting for more entropy.
> -As a result, if there is not sufficient entropy in the
> -entropy pool, the returned values are theoretically vulnerable to a
> +If there is not sufficient entropy, a pseudorandom number generator is used
> +to create the requested bytes.
> +As a result, in this case the returned values are theoretically vulnerable to a
> cryptographic attack on the algorithms used by the driver.
> Knowledge of how to do this is not available in the current unclassified
> literature, but it is theoretically possible that such an attack may
>
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
--
To unsubscribe from this list: send the line "unsubscribe linux-man" in
the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
prev parent reply other threads:[~2015-01-10 13:34 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-11-26 22:58 [PATCH 1/1] random.4: mention PRNG used by urandom Heinrich Schuchardt
[not found] ` <1417042709-16767-1-git-send-email-xypron.glpk-Mmb7MZpHnFY@public.gmane.org>
2015-01-10 13:34 ` Michael Kerrisk (man-pages) [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=54B12A5A.1050808@gmail.com \
--to=mtk.manpages-re5jqeeqqe8avxtiumwx3w@public.gmane.org \
--cc=linux-man-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=tytso-3s7WtUTddSA@public.gmane.org \
--cc=xypron.glpk-Mmb7MZpHnFY@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).