[CentOS] Can we trust RedHAt encryption tools?
Lists
lists at benjamindsmith.comSat Jan 11 01:35:06 UTC 2014
- Previous message: [CentOS] Can we trust RedHAt encryption tools?
- Next message: [CentOS] Can we trust RedHAt encryption tools?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 01/09/2014 02:52 PM, m.roth at 5-cent.us wrote: > Not quite - anyone mandated to POSIX standards are effectively mandated to > use the compromised algorithms, as I understand it. That's news to me. Citation? Recently, there was a discussion amongst BSD devs and they concluded that they don't trust hardware RNG either, deciding instead to add their randomness to other sources before going to /dev/random. http://arstechnica.com/security/2013/12/we-cannot-trust-intel-and-vias-chip-based-crypto-freebsd-developers-say/ Lastly, we should all thank this neckbeard who's been banging the gong all along, and was right: http://schestowitz.com/Weblog/archives/2013/07/15/ -Ben
- Previous message: [CentOS] Can we trust RedHAt encryption tools?
- Next message: [CentOS] Can we trust RedHAt encryption tools?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the CentOS mailing list