Alternate egd socket
Werner Koch
wk at gnupg.org
Thu Feb 10 22:11:15 CET 2000
On Thu, 10 Feb 2000, Dave Dykstra wrote:
> Yes, it is. Do you agree that it is a security problem if you let any user
> create the /tmp/entropy to be shared by everybody?
Sure. Maybe it is better to put it into /var/lib/egd/entropy as /etc
maybe readonly but I don't know about file system standards on other
systems aside GNU and Linux.
> Cool, thanks. That will permit fast, convenient --encrypt without any
> superuser intervention on machines that don't have /dev/random. After that
Better get at least _some_bytes from EGD and use an option to disable
it entirely.
Werner
More information about the Gnupg-devel
mailing list