Wan-Teh Chang wrote:
> Could you tell me what the difference is between
> /dev/urandom and /dev/random?
As it happens, the latest issue of Linux Weekly News has a discussion on
this very question:
http://lwn.net/2001/0823/kernel.php3
See the section "Feeding entropy from network devices".
Given the potential dangers of having insufficient entropy feeding into
things like generating private keys, SSL master secrets, etc., and the
history of problems caused by "not random enough" implementations (e.g.,
the original SSL PRNG problem), I would really _really_ like to see a
thorough discussion of this issue prior to anyone changing the way NSS
does randomness.
Frank
--
Frank Hecker
[EMAIL PROTECTED]
