| 1 |
There is also another way. This: |
| 2 |
ftp://riemann.iam.uni-bonn.de/pub/users/roessler/arc4random.tgz |
| 3 |
could be modified to use random_erandom and fallback to urandom and include |
| 4 |
gettimeofday. Even without {e,u}random it produces fairly random numbers that |
| 5 |
won't repeat. The source can be prepended to ssp.c, and arc4random() would be |
| 6 |
available in libc after. Then __guard = arc4random(). Its a bit more bloat, |
| 7 |
but its usefull bloat. Ssp or mkstemp can use arc4random() without caring if |
| 8 |
its comming from sysctl, urandom or gettimeofday. |
| 9 |
|
| 10 |
|
| 11 |
-- |
| 12 |
gentoo-hardened@g.o mailing list |
Archives