| From: | Allan Engelhardt <allane(at)cybaea(dot)com> |
|---|---|
| To: | Doug McNaught <doug(at)wireboard(dot)com> |
| Cc: | Bruno Wolff III <bruno(at)wolff(dot)to>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Re: Still wondering about random numbers... |
| Date: | 2001-08-08 10:22:31 |
| Message-ID: | 3B7112E7.88963FD0@cybaea.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general pgsql-patches |
Doug McNaught wrote:
> Allan Engelhardt <allane(at)cybaea(dot)com> writes:
>
> > On other motherboards, reading from /dev/random can stall
> > indefinitely. This is not a Good Thing. /dev/urandom is fine, but
> > not rally better than rand(3) or random(3).
>
> Wrong; it's still a lot better, especially if you have a reasonable
> amount of entropy coming in--/dev/urandom uses the same entropy pool
> as /dev/random and generates its data using a cryptographically secure
> hash function. This is still a lot better (for crypto purposes) than
> the simple LCGs used in the standard C library functions.
Absolutely! I had minor brain damage when I wrote the paragraph. What I meant was:
"/dev/urandom is not really better than rand(3) or random(3) *in this situation* [i.e. when reads from /dev/random stalls and there is no system entropy]"
You don't get a lot of entropy from the standard /dev/random drivers on a system without users (pressing a key gives 10 bytes of entropy, moving the mouse ~8), but you do get a some so it is better.
As you said.
Allan.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tony Grant | 2001-08-08 13:15:33 | data types |
| Previous Message | Doug McNaught | 2001-08-08 03:18:24 | Re: Long Query |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Matt Block | 2001-08-08 13:59:15 | RE: Re: Still wondering about random numbers... |
| Previous Message | Doug McNaught | 2001-08-08 03:15:14 | Re: Re: Still wondering about random numbers... |