[cryptography] urandom vs random

shawn wilson ag4ve.us at gmail.com
Fri Aug 16 09:32:02 EDT 2013

I thought that decent crypto programs (openssh, openssl, tls suites)
should read from random so they stay secure and don't start generating
/insecure/ data when entropy runs low. The only way I could see this
as being a smart thing to do is if these programs also looked at how
much entropy the kernel had and stopped when it got ~50 or so. Is this
the way things are done when these programs use urandom or what?

More information about the cryptography mailing list