A small correction in this: On Sat, Feb 5, 2022 at 5:02 PM Jason A. Donenfeld <Jason@xxxxxxxxx> wrote: > - .mode = 0644, > + .mode = 0444, We actually need to keep this at 644, so as not to break things that rely on it. It will still do nothing, which is the same choice made with "urandom_min_reseed_secs" - it's there but doesn't control anything. So the above snippet is gone.
