Bodo Moeller wrote: > It may be zero, but it may be more, depending on what happened earlier > in the program if the same memory locations have been in use before. > This may very well include data that would be unpredictable to > adversaries -- i.e., entropy; that's the point here.
Do you know its unpredicatable or are you only guessing? Can a bad guy force it to be predicatable? How much entropy is actually there? Has anyone actually measured it? Erik -- ----------------------------------------------------------------- Erik de Castro Lopo ----------------------------------------------------------------- "Using Java as a general purpose application development language is like going big game hunting armed with Nerf weapons." -- Author Unknown ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
