From: Christoph Hellwig Subject: Re: [PATCH] random: add blocking facility to urandom Date: Thu, 8 Sep 2011 04:41:42 -0400 Message-ID: <20110908084142.GA4032@infradead.org> References: <1314974248-1511-1-git-send-email-jarod@redhat.com> <4E67B75B.8010500@redhat.com> <20110907192737.GD20571@thunk.org> <201109071602.24519.sgrubb@redhat.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: Ted Ts'o , Jarod Wilson , Sasha Levin , linux-crypto@vger.kernel.org, Matt Mackall , Neil Horman , Herbert Xu , Stephan Mueller , lkml To: Steve Grubb Return-path: Received: from 173-166-109-252-newengland.hfc.comcastbusiness.net ([173.166.109.252]:38944 "EHLO bombadil.infradead.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S932140Ab1IHIly (ORCPT ); Thu, 8 Sep 2011 04:41:54 -0400 Content-Disposition: inline In-Reply-To: <201109071602.24519.sgrubb@redhat.com> Sender: linux-crypto-owner@vger.kernel.org List-ID: On Wed, Sep 07, 2011 at 04:02:24PM -0400, Steve Grubb wrote: > The only time this kicks in is when a system is under attack. If you have set this and > the system is running as normal, you will never notice it even there. So your userspace will break exactly when you least need it and can't debug it, awsome. Could you security certification folks please get off your crack ASAP?