Les Bell
2008-May-18 08:06 UTC
[CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
Ralph Angenendt <ra+centos at br-online.de> wrote:>>I don't think the OpenSSH devels really do care about that - there is no discussion whatsoever on the secureshell list or on the devel list. No idea about our upstream, but I don't think so either. << Correct: all that needs to be said was said years ago, by Dr. Robert E. Coveyou, of Oak Ridge National Laboratory (now NIST): "The generation of random numbers is to important to be left to chance". Best, --- Les Bell, RHCE, CISSP [http://www.lesbell.com.au] Tel: +61 2 9451 1144 FreeWorldDialup: 800909
Daniel de Kok
2008-May-18 09:43 UTC
[CentOS] Re: [CentOS-announce] Impact of the Debian OpenSSL vulnerability
On Sun, May 18, 2008 at 10:06 AM, Les Bell <lesbell at lesbell.com.au> wrote:> "The generation of random numbers is to important to be left to chance".Speaking of which, this seems to be a nice poor man's hardware RNG, that uses ALSA: http://www.digital-scurf.org/software/randomsound (Per Russell Coker's excellent blog.) -- Daniel