Alternate egd socket

Werner Koch wk at gnupg.org
Thu Feb 10 22:11:15 CET 2000


On Thu, 10 Feb 2000, Dave Dykstra wrote:

> Yes, it is.  Do you agree that it is a security problem if you let any user
> create the /tmp/entropy to be shared by everybody?

Sure.  Maybe it is better to put it into /var/lib/egd/entropy as /etc
maybe readonly but I don't know about file system standards on other
systems aside GNU and Linux.

> Cool, thanks.  That will permit fast, convenient --encrypt without any
> superuser intervention on machines that don't have /dev/random.  After that

Better get at least _some_bytes from EGD and use an option to disable
it entirely.


   Werner



More information about the Gnupg-devel mailing list