[Pkg-gnutls-maint] Bug#412408: Is invoking exit(2) in a library the right thing to do?

Werner Koch wk at gnupg.org
Fri Nov 2 10:02:28 UTC 2007


On Thu,  1 Nov 2007 16:13, rlaager at wiktel.com said:

> This is causing a problem for Pidgin as well. [0] If there's no entropy
> device, then you can't use GnuTLS. However, that shouldn't prevent you

There is a serious problem on your system if gnutls and thus libgcrypt
are available but the system has latter been changed to remove the
entropy source (/dev/random in most cases).  That is as serious as a
missing /dev/null.  The presence of /dev/random is not a runtime
configurable option on Linux.  In fact it was a design goal for
/dev/random to have it always available.  You should not be able to
execute any application except for a rescue system if such premises are
not anymore met.


Salam-Shalom,

   Werner


-- 
Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.






More information about the Pkg-gnutls-maint mailing list