SEO
vBulletin Search Engine Optimization
| |||||||
| Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-18-2008, 08:54 AM
| ||||
| ||||
 Re: isakmpd-20041012 patch for /dev/random hang on arm linux 2.4.27-vrs1 On Wed, 11 Oct 2006, Dimitry Andric wrote: > Michael Grigoni wrote: > > I have ported isakmpd based on code from 2004-10-12 with patches > > for linux to arm4l-linux-2.4.27-vrs1. It hangs in exchange_establish() > > and becomes unresponsive to fifo input or signals. The hang occurs > > in arc4stir() while trying to read /dev/random; the fix is to use > > /dev/urandom. > > Are you crazy? Those random devices are SUPPOSED to block if there is > no sufficient entropy available. If you don't care about the quality of > random number output, you might as well stop using IPsec.  Don't be silly. Use of a good PRNG that doesn't block (like urandom or arandom) is perfectly acceptable here and this matches OpenBSD's behaviour. -d      |
Linear Mode
