On Fri, Jul 11, 2008 at 12:28 AM, Paul Wouters <[EMAIL PROTECTED]> wrote: > On Thu, 10 Jul 2008, Ian Goldberg wrote: > >> The problem is that people run key generation with libgcrypt on machines >> that gather very little entropy into /dev/random, and key generation can >> literally take over an hour. > > On a desktop with IM client? They don't use disk or network IO, both of > which gather entropy (on linux)?
Linux (generally) doesn't use network for entropy generation, it's prone to predictability attacks. > Which systems do people use that are so entropyless, and can we only > use /dev/urandom on those? Take a look at this http://www.number.ch/wiki/index.php/LinuxEntropySources and http://en.wikipedia.org/wiki/Entropy_(computing) Another interesting reading on the subject: http://lwn.net/Articles/283103/ HTH T-Bone -- Thibaut VARENE http://www.parisc-linux.org/~varenet/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
