I don't understand, just take the first 1k of data from /dev/random and store
that in a file somewhere. Protect that file appropriately, and use the
contents of it. It's completely under your control and you can distribute it
to share the secret across several load balanced hosts.
Why would you look for things that aren't under your control and would tie you
to your ethernet card or particular hardware or whatever?
Matt Sergeant <[EMAIL PROTECTED]> writes:
> On Wed, 09 Feb 2000, Doug Kyle wrote:
> > Matt Sergeant wrote:
> >
> > > Anyone got any good ideas on picking up a site-unique MAC secret. What I
> > > need is something that won't change over server software upgrades, but
> > > isn't hard coded. At the moment I've picked:
> > >
> > > use Config;
> > > my $secret = Config->myconfig;
> > >
> > > (output of perl -V)
> > >
> > > But it's sensitive to perl upgrades. I'm pretty certain there must be
> > > _something_ I can use. I'm thinking perhaps of join('', `ls -la
> > > $some_dir_created_on_install`), but again, the sysadmin could easily
> > > inadvertently touch something in that dir.
> > >
> > > --
> > > <Matt/>
> > >
> > > Details: FastNet Software Ltd - XML, Perl, Databases.
> > > Tagline: High Performance Web Solutions
> > > Web Sites: http://come.to/fastnet http://sergeant.org
> > > Available for Consultancy, Contracts and Training.
> >
> > What about generating some value from the MAC address of the server's
> > NIC(s)?
> > ifconifg <interface name> ether, or arp <hostname> will return MAC
> > addresses.
>
> Could potentially change if someone swaps out their ethernet card, but
> that's not terribly likely. Is there a cross platform way of getting MAC
> addresses from ethernet cards, I know ifconfig works on Linux.
>
> --
> <Matt/>
>
> Details: FastNet Software Ltd - XML, Perl, Databases.
> Tagline: High Performance Web Solutions
> Web Sites: http://come.to/fastnet http://sergeant.org
> Available for Consultancy, Contracts and Training.
>
--
greg
