From mboxrd@z Thu Jan 1 00:00:00 1970 From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [PATCH 2/2] services: Add 'dropbear-service'. Date: Mon, 11 Jul 2016 10:33:59 +0200 Message-ID: <878tx8o9oo.fsf@gnu.org> References: <20160704205616.11599-1-david@craven.ch> <20160704205616.11599-2-david@craven.ch> <20160707172517.GA5283@jasmine> <20160709224125.GA11385@jasmine> <20160709224357.GA11997@jasmine> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:41690) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bMWfG-0004RL-3g for guix-devel@gnu.org; Mon, 11 Jul 2016 04:34:07 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1bMWfD-0004wz-05 for guix-devel@gnu.org; Mon, 11 Jul 2016 04:34:06 -0400 In-Reply-To: <20160709224357.GA11997@jasmine> (Leo Famulari's message of "Sat, 9 Jul 2016 18:43:57 -0400") List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Leo Famulari Cc: guix-devel@gnu.org, David Craven Leo Famulari skribis: > On Sat, Jul 09, 2016 at 06:41:25PM -0400, Leo Famulari wrote: >> On Thu, Jul 07, 2016 at 01:25:17PM -0400, Leo Famulari wrote: >> > If so, what does Dropbear do? How does it get random numbers to genera= te >> > the host key? >>=20 >> I looked into it =E2=80=94 Dropbear uses /dev/urandom, which *may* not b= e safe >> to use immediately after first boot. >>=20 >> What do you think about implementing the '-R' option, described below? > > To clarify, I'm also asking what you think about making it the default > for the dropbear-service. That sounds like a good idea to me. David, could you update the patch accordingly, with a comment explaining this choice? Thanks, Ludo=E2=80=99.