Re: Strengthening the Passphrase Model

Ben Laurie (ben@algroup.co.uk)
Thu, 11 Feb 1999 19:34:11 +0000

• Next message: David R. Conrad: "Re: Strengthening the Passphrase Model"
• Previous message: Jesus Cea Avion: "Re: Chaffing and Winnowing"
• In reply to: Guillaume Chelius: "Chaffing and Winnowing"
• Next in thread: David R. Conrad: "Re: Strengthening the Passphrase Model"
• Reply: David R. Conrad: "Re: Strengthening the Passphrase Model"

Bill Frantz wrote:
>
> At 2:31 PM -0700 2/10/99, David R. Conrad wrote:
> >[My problem with this is that the source of entropy is particularly
> > bad... --Perry]
>
> Perry - I thought that /dev/random was fairly good on the systems that
> support it. However, collapsing all the entropy down to a 16 or 32 bit int
> seems a bit bogus.
>
> [Plus, srand is NOT /dev/random. --Perry]

Is Perry losing it? For the hard of reading, I have excised all but the
critical line...

> > FILE *fp = fopen("/dev/random", "r");

Cheers,

Ben.

--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
     - Indira Gandhi

• Next message: David R. Conrad: "Re: Strengthening the Passphrase Model"
• Previous message: Jesus Cea Avion: "Re: Chaffing and Winnowing"
• In reply to: Guillaume Chelius: "Chaffing and Winnowing"
• Next in thread: David R. Conrad: "Re: Strengthening the Passphrase Model"
• Reply: David R. Conrad: "Re: Strengthening the Passphrase Model"