Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'WARNING: Security Risk' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
WARNING: Security Risk
Authored by: dfe on Jan 26, '04 11:54:55AM

I would not do this if I were you because you are effectively getting rid of the entropy pool which is used for secure random number generation. In other words, any encryption keys your computer generates will not be very secure and will be much easier for an attacker to guess.

An X-bit encryption key is only as good as its source of random data. Computers don't generate random data too well and so they need a source for it. Sun actually has an interface to a Lava Lamp for generating entropy (I'm not joking). Most desktop systems use user actions such as the way you move your mouse or type on your keyboard to generate entropy.

I really don't understand what the big deal about having your drive spin up for a bit every hour is anyway. Perhaps you can change a defaults value and/or hexedit the binary to change the timeout value? I don't at all recommend linking the entropy cache to /dev/null though or making it unwritable so it is effectively useless.



[ Reply to This | # ]