LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

util-linux: predictable mcookie results

util-linux: predictable mcookie results

Posted Feb 20, 2003 22:13 UTC (Thu) by Ross (subscriber, #4065)
Parent article: util-linux: predictable mcookie results

I mentioned this in another post for this bug fix.
/dev/urandom should be completely unpredictable
provided that you have not:

1) broken SHA-1
or
2) obtained access to the entropy pool

Am I just confused or was this update ultra-paranoia?

(Log in to post comments)

util-linux: predictable mcookie results

Posted Mar 3, 2003 12:49 UTC (Mon) by rasumner (guest, #5410) [Link]

I agree, I see almost no reason to prefer /dev/random over /dev/urandom. The only cases that I can think of are

i) 128-bits isn't enough entropy (it is, honest)
ii) The machine has just booted (perhaps even for the first time), so that the entropy pool doesn't have enough entropy in it. This might be reasonable say for RedHat's generating an ssh key the first time sshd is started.

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds