On 2023-03-24, Werner Boninsegna <[email protected]> wrote: > Hello, > > fake /dev/random means I created a file with a string of text such as > "1234567890". This was a workaround to get the application running.
Yes that's as bad as I thought. While most things in OpenBSD itself don't use /dev/random or /dev/urandom (some exceptions like llvm has some use of it) other software may well do and won't be expecting to get the same bytes repeatedly. Things could go very badly. > Your suggestion is to chroot into /var/www and run "MAKEDEV random" ? no; mkdir /var/www/dev cd /var/www/dev sh /dev/MAKEDEV random urandom though of course you might miss some other things whuch need to be in the chroot (which might not show up until certain codepaths are run). Though my suggestion is not to run it in chroot at all.
