Re: Can we trust RedHAt encryption tools?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 01/09/2014 02:52 PM, m.roth@xxxxxxxxx wrote:
> Not quite - anyone mandated to POSIX standards are effectively mandated to
> use the compromised algorithms, as I understand it.

That's news to me. Citation?

Recently, there was a discussion amongst BSD devs and they concluded 
that they don't trust hardware RNG either, deciding instead to add their 
randomness to other sources before going to /dev/random.

http://arstechnica.com/security/2013/12/we-cannot-trust-intel-and-vias-chip-based-crypto-freebsd-developers-say/

Lastly, we should all thank this neckbeard who's been banging the gong 
all along, and was right:

http://schestowitz.com/Weblog/archives/2013/07/15/

-Ben
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux