[Ach] removed outdated info on Linux RNG / haveged
Alexander Wuerstlein
arw at cs.fau.de
Wed Jul 12 14:48:27 CEST 2017
On 2017-07-11T20:03, Alexander Wuerstlein <arw at cs.fau.de> wrote:
> On 2017-07-11T18:53, Alice Wonder <alice at librelamp.com> wrote:
> >
> > Give an acedemically sound (as in published exploit or peer reviewed paper)
> > demonstrating a flaw in haveged or just stop.
I just found this, pertaining to PolarSSLs own implementation of the
HAVEGE algorithm:
https://tls.mbed.org/tech-updates/security-advisories/polarssl-security-advisory-2011-02
Debian docs describe how the PolarSSL implementation compares to the one in
haveged:
https://www.apt-browse.org/browse/ubuntu/trusty/universe/i386/haveged/1.7c-1/file/usr/share/doc/haveged/README.Debian
Ciao,
Alexander Wuerstlein.
More information about the Ach
mailing list