On Mon, Jul 09, 2012 at 03:53:14PM +0200, Toralf Förster wrote:
> After reading [1] I'm wondering whether these would at least improve
> OpenSSL's implementation of a RSA key generator (page 13 in [1]) ?
Random PID's is a terribly way to get entropy into OpenSSL. You don't
get that many bits of e
After reading [1] I'm wondering whether these would at least improve
OpenSSL's implementation of a RSA key generator (page 13 in [1]) ?
/me knows about the security-by-obscurity discussion like in [2],
however here I do not speak about guessing next PID, but about the
described entropy hole.
[1]
2 matches
Mail list logo
