Hello, On Mon, Aug 28, 2017 at 12:04:51PM +0200, Thomas Schmitt wrote: > And again, the argumentation of Theodore is that there is always enough > entropy at hand. I understand that in this situation there is no difference > between /dev/random and /dev/urandom. > The difference appears only when the assumption of wealth is not fulfilled.
It cannot be "not fulfilled" except in the very early boot sequence. The ChaCha20 PRNG in Linux only needs about 256 bits of entropy to then generate as much as you like from that point forwards. Some data is saved on shutdown to /var/lib/urandom/random-seed and very early on is fed back in to seed the PRNG. It's only in the small window between boot and feeding in that data where the PRNG might not have enough entropy. Cheers, Andy -- https://bitfolk.com/ -- No-nonsense VPS hosting
