Alternate egd socket

Werner Koch wk at
Thu Feb 10 22:11:15 CET 2000

On Thu, 10 Feb 2000, Dave Dykstra wrote:

> Yes, it is.  Do you agree that it is a security problem if you let any user
> create the /tmp/entropy to be shared by everybody?

Sure.  Maybe it is better to put it into /var/lib/egd/entropy as /etc
maybe readonly but I don't know about file system standards on other
systems aside GNU and Linux.

> Cool, thanks.  That will permit fast, convenient --encrypt without any
> superuser intervention on machines that don't have /dev/random.  After that

Better get at least _some_bytes from EGD and use an option to disable
it entirely.


More information about the Gnupg-devel mailing list