On 11/23/05, Joshua Slive <jslive@xxxxxxxxx> wrote: > On 11/23/05, Olaf van der Spek <olafvdspek@xxxxxxxxx> wrote: > > On 11/23/05, Joshua Slive <jslive@xxxxxxxxx> wrote: > > > > Why is server startup blocked by that? > > > > Can't server startup continue and all auth requests fail until there > > > > are random bytes? > > > > > > I'd guess it would be much harder to impliment (would require > > > dispatching a thread/process to wait on the random number generator) > > > and wouldn't be what all admins would want anyway. > > > > Why would an admin prefer the entire server to block? > > If your site depends on digest auth, then you want to be confident > that if apache says it started successfully, your site is going to > work. Otherwise, you'd have to do detailed testing every time you > restarted your server. I don't think Apache saying ok guarantees your site is going to work. Doesn't digest also require random bytes after startup to periodically regenerate secrets?
|