[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

libskey patch

To: tech@openbsd.org
Subject: libskey patch
From: "Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>
Date: Thu, 02 Jul 1998 22:02:38 -0400
Cc: misc@openbsd.org
Delivery-Date: Thu Jul 2 19:04:13 1998

-----BEGIN PGP SIGNED MESSAGE-----

To: tech@openbsd.org
Subject: libskey patch
Cc: misc@openbsd.org
Date: 07/02/98, 22:02:37

The patches I commited to libskey aim to prevent outsiders from
figuring out whether a user exists or not on the system. 

To take advantage of this feature, you need to recompile/install
libskey, and you need to create a file in /etc/host.random
that contains random bits. Since there's no need to use truly random
(cryptographically random) bits, something along the lines of

  dd if=/dev/urandom of=/etc/host.random bs=1024 count=64

If you don't enable this feature, the old (current) behaviour will be
exhibited. This file will be installed automatically for version 2.4
Cheers,
- -Angelos

PS. Thanks to Todd Miller for the testing and bug tracking :-)
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBNZw7vb0pBjh2h1kFAQFG8AQAiKq/6lDehu6Bc+ahnS8amv0sSpiFwROz
aGcc9z0uqKurGszW0Gfb7Gmz8YD7NxmItiSA+SZoQezGoYghqYHWqLB0T4JkjX/x
g8nzftH/4vYAIC2M2gQVn4ZoIaqHxsHOgH4VR45HyzpzdbMQetBb2sgMv4pgizXO
BrCQV7VtwXo=
=BR3X
-----END PGP SIGNATURE-----

Prev by Date: Re: suppressing APM BIOS messages
Next by Date: anyone use CHAP with pppd?
Prev by thread: Re: suppressing APM BIOS messages
Next by thread: anyone use CHAP with pppd?
Index(es):
- Date
- Thread