Do not use GnuPG under Mac OS RNG

Werner Koch
Thu Jun 28 11:02:01 2001

 || On Wed, 27 Jun 2001 18:44:32 -0400
 || Gordon Worley <> wrote: 

 gw> After doing some more checking, it seems that everything is okay. The
 gw> numbers being generated are random and safe for usage from what I can

I guess it is okay when you have made sure that most of the standard
Unix tools are returning some reasonable output.

 gw> extra hashing done by egd), does egd really give numbers that are that
 gw> much more secure?  I'm wondering if it's even worth running egd,
 gw> because it's something extra that I have to explain to users to get

The advantage of EGD is that it keeps a pool of entropy oer
invocations of gpg.  If gpg has to use rndunix, it has to create such
a pool everytime it is started and running all these system utilities
is not a light job.  And in many cases you are wasting most of the
entropy you have gathered.


Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus