>>>>> "Russ" == Russ Allbery <[EMAIL PROTECTED]> writes:
Russ> Sam, do you know what parts of kadmind use the random number
Russ> generator? Is it sufficient for security to seed the random
Russ> number generator before the first client connection is
Russ> handled, or does it have to be done before kadm5_init, RPC
Russ> service creation, fiddling with the kdb keytab, and so
Russ> forth? I'm looking at the implications of the following
Russ> patch, which builds and passes the test suite.
I think that you really just want to seed the rng before generating
the first long-term key, so before the first client connection should
be fine.
--Sam
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
