> > pool. The consensus was that the FIPS testing should be moved to userspace. > Consensus from whom? And who says the FIPS testing is useful anyways? > I think you just need to trust the random generator, it is like > you need to trust any other piece of hardware in your machine. Or do you > check regularly if you mov instruction still works? @)
For joe-user imho it's better to do a check from a cronjob once a day. But for high demand security, maybe make it pluggable? Like that a user can plug-in some module which does the testing? Then you can have several kinds of tests depending on your needs. Folkert van Heusden Auto te koop! Zie: http://www.vanheusden.com/daihatsu.php Op zoek naar een IT of Finance baan? Mail me voor de mogelijkheden! +------------------------------------------------------------------+ |UNIX admin? Then give MultiTail (http://vanheusden.com/multitail/)| |a try, it brings monitoring logfiles to a different level! See | |http://vanheusden.com/multitail/features.html for a feature list. | +------------------------------------------= www.unixsoftware.nl =-+ Phone: +31-6-41278122, PGP-key: 1F28D8AE Get your PGP/GPG key signed at www.biglumber.com!
signature.asc
Description: Digital signature
