| 1 |
Robert Connolly wrote: |
| 2 |
|
| 3 |
>There is also another way. This: |
| 4 |
>ftp://riemann.iam.uni-bonn.de/pub/users/roessler/arc4random.tgz |
| 5 |
>could be modified to use random_erandom and fallback to urandom and include |
| 6 |
>gettimeofday. Even without {e,u}random it produces fairly random numbers that |
| 7 |
>won't repeat. The source can be prepended to ssp.c, and arc4random() would be |
| 8 |
>available in libc after. Then __guard = arc4random(). Its a bit more bloat, |
| 9 |
>but its usefull bloat. Ssp or mkstemp can use arc4random() without caring if |
| 10 |
>its comming from sysctl, urandom or gettimeofday. |
| 11 |
> |
| 12 |
> |
| 13 |
>-- |
| 14 |
>gentoo-hardened@g.o mailing list |
| 15 |
> |
| 16 |
> |
| 17 |
> |
| 18 |
good work, folks, nice to read this thread :-) |
| 19 |
|
| 20 |
Alex |
| 21 |
|
| 22 |
|
| 23 |
-- |
| 24 |
gentoo-hardened@g.o mailing list |
Archives