On Jan 15, 2014, at 10:21 , Justin Cormack <[email protected]> wrote: > On Wed, Jan 15, 2014 at 8:47 AM, Fredrik Pettai <[email protected]> wrote: >> >> While at the topic randomness, would be good if NetBSD could implement an >> ioctl like Linux RNDADDENTROPY? >> This helps to increase the randomness by importing & inserting from other >> random sources, like the YubiHSM etc. > > It does, RNDADDDATA. However you might want to write a driver, as the > ioctl does not add to the entropy count (because userspace is > untrusted).
Or perhaps a simpler idea would be to add a sysctl option that gives you a choice whether it should accept entropy from userspace or not? /P
signature.asc
Description: Message signed with OpenPGP using GPGMail
