On Thu, Feb 28, 2019 at 11:42:41PM -0500, Devin Hussey wrote: > This is a new patch to follow up to my non-cryptographic hash patch > that is a little higher quality and has a PoC DoS script. > 3. Seeding at startup. I try to read from /dev/urandom and fall > back to using clock(). This serves as the seed for the hash functions, > and makes things much less predictable so it can't just be shut down > with a static script. On any modern platform, please use getentropy() instead. It does the same thing as reading from /dev/urandom, yet is: * faster (dash is usually preferred over bash because of speed, and a file open is slow enough to be noticeable) * immune to file exhaustion attacks Meow! -- ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ ⢿⡄⠘⠷⠚⠋⠀ Have you accepted Khorne as your lord and saviour? ⠈⠳⣄⠀⠀⠀⠀
Re: [PATCH] Use a larger table, initial seeds, and a better hash function to prevent flooding
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: [PATCH] Use a larger table, initial seeds, and a better hash function to prevent flooding
- From: Adam Borowski <kilobyte@xxxxxxxxxx>
- Date: Fri, 1 Mar 2019 09:47:37 +0100
- Cc: dash@xxxxxxxxxxxxxxx
- In-reply-to: <CAEtFKstorVyBFAJynkevbZx6nW7p1ZuF3EP0MJhxpULrg6ZpFA@mail.gmail.com>
- References: <CAEtFKstorVyBFAJynkevbZx6nW7p1ZuF3EP0MJhxpULrg6ZpFA@mail.gmail.com>
- User-agent: NeoMutt/20170113 (1.7.2)
- Follow-Ups:
- References:
- Prev by Date: [PATCH] Use a larger table, initial seeds, and a better hash function to prevent flooding
- Next by Date: Re: [PATCH] shell: Reset handler when entering a subshell
- Previous by thread: [PATCH] Use a larger table, initial seeds, and a better hash function to prevent flooding
- Next by thread: Re: [PATCH] Use a larger table, initial seeds, and a better hash function to prevent flooding
- Index(es):
 |