Hard linux container problem: what do you do about /dev/random? How do you control access to a finite shared resource (entropy bits)?
-
-
Replying to @erincandescent
@oshepherd You don't use urandom for long-lived keys.1 reply 0 retweets 0 likes -
Replying to @erincandescent
@oshepherd@landley Using urandom (or equiv getrandom() syscall) is actually the correct behavior for everything, including long-lived keys.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@oshepherd@landley /dev/random and the hassle GPG makes you go through to gather entropy are pure cargo-cult nonsense.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@RichFelker@landley The one case where urandom can fail and random can't is when the system hasn't collected any entropy yet...1 reply 0 retweets 0 likes -
Replying to @erincandescent
@RichFelker@landley but it should be regarded as a long standing Linux bug that the system will hand out random numbers in this case1 reply 0 retweets 0 likes
@oshepherd @landley Yes. It's entirely fixable though just by saving entropy in nonvolatile storage and reloading it during early boot.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.