Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: how i stopped worrying and loved the backdoor
From: Marsh Ray <marsh () extendedsubset com>
Date: Fri, 24 Dec 2010 19:24:44 -0600

On 12/24/2010 07:08 PM, Dan Kaminsky wrote:

Don't we have hardware RNG in most motherboard chipsets nowadays?

(Not that you should exclusively trust it, but the nature of RNG's is
that it's easy to mix in sources.)

Haha, you're going to love this:

http://code.bsd64.org/cvsweb/openbsd/src/sys/dev/rnd.c?rev=1.106;content-type=text%2Fplain

      switch(minor(dev)) {
              case RND_RND:
                      ret = EIO;      /* no chip -- error */
                      break;
              case RND_SRND:
              case RND_URND:
              case RND_ARND_OLD:
              case RND_ARND:
                      arc4random_buf(buf, n);
                      break;
              default:
                      ret = ENXIO;
              }

- Marsh

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]