Um 09:57 Uhr am 30.01.06 schrieb Florian Weimer: > * Sven Hartge: >>> According to my tests, it doesn't. After some discussion with the GNU >>> TLS developers, I think it does the right thing and reads from >>> /dev/urandom only. >> Are you sure? > Pretty much. Exim does not read from /dev/random according to strace.
lsof said otherwise. Besides, if it read its seed from urandom, then it should not block on a lack of entropy, shouldn't it? >> When the exim on my server blocked due to lack of entropy, I had about 100 >> processes trying to access /dev/random (at least lsof said so). > Which version of Exim 4, GNU TLS and libgcrypt is this? Both exim-4.50 from Sarge and exim-4.50-2bpo1 from Backports.org. libgcrypt is the one from Sarge (including all security updates of course). I'll try to strace exim later this day and send the file to you and Marc. Grüße, Sven. -- Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://www.svenhartge.de/ Achtung, neue Mail-Adresse: [EMAIL PROTECTED]
