| : To get the ball rolling, I've put online my patch to randomize the order which
| : PIDs follow. If all goes well, I expect to commit this sometime over the
| : weekend, followed by another commit the following week to replace the PRNG
| : with something a little better than random().
| What's wrong with the original cryptographically strong randomizer in
Absolutely nothing. Last I checked, they used RC4, which is fairly fast and
efficient for the kernel. However, I'm still debating whether or not it's
actually _needed_. IMHO, OpenBSD takes somethings beyond the point of
paranoid overkill, but in this secnario I don't think it would hurt either way.
Dan Moschuk (TFreak!da...@freebsd.org)
"Try not. Do, or do not. There is no try."
To Unsubscribe: send mail to majo...@FreeBSD.org
with "unsubscribe freebsd-audit" in the body of the message