LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Russell: Sources of Randomness for Userspace

Russell: Sources of Randomness for Userspace

Posted Mar 30, 2012 4:18 UTC (Fri) by slashdot (guest, #22014)
Parent article: Russell: Sources of Randomness for Userspace

An hash of the root/administrator password hash concatenated with the MAC address seems the best source to seed a cryptographically secure PNRG.

If it doesn't have enough randomness, the system is already insecure, and thus an attacker can just read the RNG state from memory regardless of randomness source.

The concatenation with the MAC address makes the RNGs of machines with the same password uncorrelated.

(Log in to post comments)

Russell: Sources of Randomness for Userspace

Posted Mar 30, 2012 4:20 UTC (Fri) by josh (subscriber, #17465) [Link]

Cute. Doesn't work for unprivileged applications, though.

Russell: Sources of Randomness for Userspace

Posted Mar 30, 2012 5:04 UTC (Fri) by cpeterso (guest, #305) [Link]

Hash(root password + MAC address) will always produce the same RNG seed. You could mix in the current time as a salt to get a different value very time.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds