Re: [CentOS] Can we trust RedHAt encryption tools?

11 Jan 2014


      On 01/09/2014 02:52 PM, m.roth@5-cent.us wrote:
...
Not quite - anyone mandated to POSIX standards are effectively mandated to
use the compromised algorithms, as I understand it.
That's news to me. Citation?
Recently, there was a discussion amongst BSD devs and they concluded 
that they don't trust hardware RNG either, deciding instead to add their 
randomness to other sources before going to /dev/random.
http://arstechnica.com/security/2013/12/we-cannot-trust-intel-and-vias-chip-...
Lastly, we should all thank this neckbeard who's been banging the gong 
all along, and was right:
http://schestowitz.com/Weblog/archives/2013/07/15/
-Ben

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Re: [CentOS] Can we trust RedHAt encryption tools?