Re: [PATCH RFC] Disable save-entropy in jails

From: Paul Hoffman <phoffman_at_proper.com>
Date: Tue, 24 Dec 2013 14:36:10 -0800
On Dec 24, 2013, at 12:44 PM, Xin Li <delphij_at_delphij.net> wrote:

> I think we shouldn't save entropy inside jails, as the data is not going
> to be used by rc script (pjd_at_126744).  If there is no objections, I will
> commit this changeset on January 1, 2014.

Even if it is not used by an rc script, it might be used by some userland program (running as root, of course) that knows about the directory and wants some fresh entropy for its own use.

Is there a problem with saving the directory in jails? It certainly isn't taking up much space.

--Paul Hoffman
Received on Tue Dec 24 2013 - 21:36:04 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:40:45 UTC