The keystore file format allows (and keytool encourages) multiple keys in a
keystore file, with each key encrypted with a different password. It should
be
possible to specify an SSLServerSocketFactory that deals with a keystore
file
that has these properties (currently, it just uses the first key
Bojan, et. al.:
The answer to these arguments are: use /dev/urandom, not
/dev/random. It's going to do as good or better than anything
you're going to seed with /dev/random, and IT WILL NOT BLOCK.
I may be wrong (I'm just starting to poke around in related
code) but it doesn't look like the ti
> I'm aware of /dev/urandom being non-blocking, but my understanding of
> /dev/urandom is that it is not cryptographicaly secure.
...
> Any thoughts on that?
[perhaps more thoughts than anyone here cares to hear, but what
the heck]
You only have so much entropy that's available on a given mac
