On Fri, 4 Jan 2008 13:41, [EMAIL PROTECTED] said: > We could consider doing something like that in gnutls too, to help > applications avoid having to do it themselves. However, the > documentation on UPDATE_SEED seems somewhat discouraging. I'm not sure
Let's say this description is very conservative and mostly written for security evaluations. The "up to 16 bytes of weak random " is not even correct for Linux because there we will always read 16 bytes from /dev/urandom and thus the whole theoretical attack won't work. I'll revise the description a bit. Shalom-Salam, Werner -- Die Gedanken sind frei. Auschnahme regelt ein Bundeschgesetz. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]