[FreeBSD-Announce] FreeBSD Security Advisory
FreeBSD-SA-08:11.arc4random
Stanislav Sedov
stas at FreeBSD.org
Mon Nov 24 14:17:34 PST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 24 Nov 2008 20:08:59 +0200
Aragon Gouveia <aragon at phat.za.net> mentioned:
> | By FreeBSD Security Advisories <security-advisories at freebsd.org>
> | [ 2008-11-24 19:48 +0200 ]
> > III. Impact
> >
> > All security-related kernel subsystems that rely on a quality random
> > number generator are subject to a wide range of possible attacks for the
> > 300 seconds after boot or until 64k of random data is consumed. The list
> > includes:
>
> I suppose this would affect the quality of SSH host keys generated at boot
> time by RC?
>
Nope, userland is unaffected.
- --
Stanislav Sedov
ST4096-RIPE
-----BEGIN PGP SIGNATURE-----
iEUEARECAAYFAkkrI3gACgkQK/VZk+smlYFwWQCXSwYxHbUizxmriBT3pO1Ei8W7
GACff74X/J3b4c01zRkXmsYxE981hwk=
=v+Xl
-----END PGP SIGNATURE-----
More information about the freebsd-security
mailing list