On Fri, 2008-05-02 at 02:56 +0300, Lucian Adrian Grijincu wrote: > 1. Some function in APR's uuid generator falls back to rand(3) if > apr_generate_random_bytes returns an error. ... > 2. E2fsprogs on which other major open source UUID generators are > supposed to be based on (at least according to > http://en.wikipedia.org/wiki/UUID) tries to open /dev/urandom first > and /dev/random second. I don't know if posting the code snniplet here > is apropiate (licensing reasons).
I was also under the impression that /dev/urandom is good enough for most stuff and is generally used for things like this these days (especially because /dev/random blocks). But, I'm not a crypto guy, so I'll defer all that to someone that has better knowledge of the issues involved. -- Bojan
