Re: [Lynx-dev] mozilla's take on arc4random

lynx-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Lynx-dev] mozilla's take on arc4random

From:	Thomas Dickey
Subject:	Re: [Lynx-dev] mozilla's take on arc4random
Date:	Tue, 14 Jul 2009 05:28:07 -0400 (EDT)

On Mon, 13 Jul 2009, Michael S Gilbert wrote:

hello,

the mozilla developers are working this predictable PRNG issue, and
they have indicated that arc4random would not be sufficently secure
[1].  is there any substance to that claim?

if so, does that impact Atsuhito's fix?

[1] https://bugzilla.mozilla.org/show_bug.cgi?id=322529


well..., one of the people doesn't like arc4*, but there's no agreement
in that thread on what to use (aside from a general bias toward fancier
implementations).  There may be some useful conclusion, e.g., pointing out
reusable code that can be linked from NSS, etc.

--
Thomas E. Dickey
http://invisible-island.net
ftp://invisible-island.net

[Prev in Thread]

Current Thread

[Next in Thread]

[Lynx-dev] mozilla's take on arc4random, Michael S Gilbert, 2009/07/14
- Re: [Lynx-dev] mozilla's take on arc4random, Thomas Dickey <=
- Re: [Lynx-dev] mozilla's take on arc4random, Thorsten Glaser, 2009/07/14
  - Re: [Lynx-dev] mozilla's take on arc4random, David Woolley, 2009/07/14
    - Re: [Lynx-dev] mozilla's take on arc4random, Thorsten Glaser, 2009/07/14

Prev by Date: [Lynx-dev] mozilla's take on arc4random
Next by Date: Re: [Lynx-dev] mozilla's take on arc4random
Previous by thread: [Lynx-dev] mozilla's take on arc4random
Next by thread: Re: [Lynx-dev] mozilla's take on arc4random
Index(es):
- Date
- Thread