On 09/11/2012 04:20 AM, Ian Lepore wrote: > On Mon, 2012-09-10 at 22:46 -0700, David O'Brien wrote: >> >>> -r just changes the sort order, which is probably pointless. >> >> I'm not wedded to "-r", but since you're proposing this to not use "-r", >> which Ian Lepore suggested after instrumenting /etc/rc.d/initrandom and >> looking at the output, please show a diff of two boots with "-r" and >> without "-r" so can see what the change really is. >> > > I observed that the order of displayed processes could differ from one > reboot to the next, even on an embedded system where little else > differed. It seemed to me that a difference in order, while small, > might be significant. Yes, even small changes that early in the process help with the replay scenario, even if they don't feed a large amount of unique entropy into the device. Doug _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"