Holger Levsen (2019-04-22):
> heh. what was the reason haveged was choosen and not
> jitterentropy-rngd which was also suggested here?
I have enough things to keep me busy; if the first one I look at can be
turned into something useful in d-i, seems to have reasonable integration
and maintenance
Hi Cyril,
On Sat, Apr 20, 2019 at 11:28:23PM +0200, Cyril Brulebois wrote:
> > does that also mean that haveged get's installed on the final system if
> > it's deemed to be useful in d-i or is that still missing?
> There's nothing in what I have written (on this bug report or in the
> code I've
Hi Holger,
Holger Levsen (2019-04-20):
> On Sat, Apr 20, 2019 at 02:39:49AM +0200, Cyril Brulebois wrote:
> > I've tweaked it a little so that we log whether haveged is available,
> > and whether it should be started, in case we need to investigate:
> >
> >
On Sat, Apr 20, 2019 at 02:39:49AM +0200, Cyril Brulebois wrote:
> I've tweaked it a little so that we log whether haveged is available,
> and whether it should be started, in case we need to investigate:
>
>
Control: tag -1 patch pending
Hi,
Ben Hutchings (2019-04-17):
> Ideally it would only be used if there isn't a hardware RNG available.
> Currently we don't include any hardware RNG modules in udebs, but that
> can be changed. So please first check that:
>
> *
On Tue, 2019-04-16 at 23:45 +0200, Cyril Brulebois wrote:
[...]
> My initial thought would be to launch it on demand when one is about to
> get to wget calls that needs HTTPS; but we could probably benefit from
> it in case HTTP is requested but redirections to HTTPS happens… There
> are also the
On 2019/04/16 23:45, Cyril Brulebois wrote:
> I'm no cryptographer so I cannot judge haveged from that angle.
Ditto here, but...
> But from a /proc/sys/kernel/random/entropy_avail standpoint, starting
> the haveged daemon inside d-i, a couple of screens after the graphical
> installer start-up,
On Tue, Apr 16, 2019 at 11:45:08PM +0200, Cyril Brulebois wrote:
>Cyril Brulebois (2019-04-16):
>> The former was on my list of things to try; thanks for mentioning the
>> latter.
...
>My initial thought would be to launch it on demand when one is about to
>get to wget calls that needs HTTPS;
Control: retitle -1 debian-installer: consider using haveged to gather entropy
Cyril Brulebois (2019-04-16):
> The former was on my list of things to try; thanks for mentioning the
> latter.
I'm no cryptographer so I cannot judge haveged from that angle.
But from a
9 matches
Mail list logo
