[arch-general] [arch-dev-public] adding rng-tools to extra?
Gaetan Bisson
bisson at archlinux.org
Mon Jun 4 10:01:08 EDT 2012
[2012-06-04 14:18:09 +0100] Kevin Chadwick:
> Multiple sources will probably increase the
> unpredictability and strength or reduce the effectiveness of
> predictability flaws
Quite the contrary: if you have one weak source, it'll make the kernel
believe it has more entropy that it actually has, while other sources,
seeing as you've filled your entropy pool, won't contribute to it,
leaving you with the fake entropy.
Better a single good source than one bad and many good ones. Or guess
what kind of problem you'll run into...
> http://www.h-online.com/security/news/item/RSA-keys-not-as-random-as-they-should-be-1435474.html
--
Gaetan
More information about the arch-general
mailing list