Re: yarrow random generator

2009-12-24 Thread RW
On Thu, 24 Dec 2009 19:48:43 + (GMT) Robert Watson wrote: > On Thu, 24 Dec 2009, Paul Graphov wrote: > > > And also according to Schneier it is a good idea to save state of > > the PRNG and restore it on boot to make it "more seeded". > > In the default configuration, we save some PRNG outp

Re: yarrow random generator

2009-12-24 Thread Robert Watson
On Thu, 24 Dec 2009, Paul Graphov wrote: And also according to Schneier it is a good idea to save state of the PRNG and restore it on boot to make it "more seeded". In the default configuration, we save some PRNG output every few minutes (using cron) to a file in /var so that it can be re-inj

Re: yarrow random generator

2009-12-24 Thread Paul Graphov
Dont these lines (random_yarrow_init function) make it available to set "seeded" to zero? SYSCTL_ADD_PROC(&random_clist, SYSCTL_CHILDREN(random_sys_o), OID_AUTO, "seeded", CTLTYPE_INT | CTLFLAG_RW, &random_systat.seeded, 1, random_check_boolean, "I",

Re: yarrow random generator

2009-12-24 Thread Paul Graphov
random_systat.seeded is exported to sysctl? isn't it? In this case If somebody resets it to zero, some "read" goest to "block" and before acquiring mutex it is reseeded, setting it to true, block will never leave the cycle. 2009/12/24 RW > On Thu, 24 Dec 2009 15:45:15 +0300 > Paul Graphov wrot

memory growth by reboot?

2009-12-24 Thread Daniel Braniss
hi, we are evaluating a Sun X2270, with 24 GB of memory. initial boot shows: Aug 19 09:07:51 x2270.cs.huji.ac.il kernel: real memory = 15032385536 (14336 MB) (the date is wrong, but it auto-fixed via ntpdate later) next reboots: Dec 23 20:24:33 x2270.cs.huji.ac.il kernel: real memory = 17179869

Re: yarrow random generator

2009-12-24 Thread RW
On Thu, 24 Dec 2009 15:45:15 +0300 Paul Graphov wrote: > Hello guys, > > I've looked at FreeBSD 8.0 cryptographically secure pseudorandom > numbers generator and have a question. It looks like a bug but I'am > not sure. > > In file sys/dev/randomdev.c, function random_read: > > if (!ra

yarrow random generator

2009-12-24 Thread Paul Graphov
Hello guys, I've looked at FreeBSD 8.0 cryptographically secure pseudorandom numbers generator and have a question. It looks like a bug but I'am not sure. In file sys/dev/randomdev.c, function random_read: if (!random_systat.seeded) error = (*random_systat.block)(flag);

Re: why does _PATH_STDPATH contain the current directory?

2009-12-24 Thread John Baldwin
On Wednesday 23 December 2009 5:15:24 pm Jilles Tjoelker wrote: > /usr/include/paths.h has: > /* All standard utilities path. */ > #define _PATH_STDPATH "/usr/bin:/bin:/usr/sbin:/sbin:" > > The current directory appears to have been added accidentally years ago. > Can I go ahead and take it out

Re: HA on FreeBSD

2009-12-24 Thread Ruben de Groot
On Thu, Dec 24, 2009 at 10:01:12AM +, yassine ayachi typed: > Hi all , > > In order to improve my firewall architecture, I installed on my two > firewalls that are on linux the platforme HAProxy-Heartbeat-BRBD, now I want > to improve it further by installing the same thing on freebsd, > > I

HA on FreeBSD

2009-12-24 Thread yassine ayachi
Hi all , In order to improve my firewall architecture, I installed on my two firewalls that are on linux the platforme HAProxy-Heartbeat-BRBD, now I want to improve it further by installing the same thing on freebsd, I installed haproxy and hearbeat without problem, but there is no DRBD support o