On Fri, Jul 11, 2014 at 18:22, Bob Beck wrote: > Ask the OpenSSH guys - if your OpenSSH portable is using RAND_BYTES, > well it could be using egd and all other sorts of interesting things. > > You could try to change your link order instead to use the arc4random > implementation from libressl - which will work for you.
The configure script for openssh should (???) pick it if you recompile, but then it won't run linked against openssl. (Does configure look for arc4random in libcrypto or just libc?) For maximum portability openssh needs to take the newly updated and ported arc4random from libressl-portable, which will then work with either openssl or libressl. Of course, that code didn't really exist much before today so that would have been hard to do. This is going to make things interesting for while.
