[Pkg-sysvinit-devel] Bug#679972: initscripts: urandom should be "started" in postinst
Raphael Geissert
geissert at debian.org
Mon Jul 2 18:48:27 UTC 2012
Package: initscripts
Severity: important
Tags: security
Hi,
TL;DR; run "etc/init.d/urandom start" in postinst
On the first boot after installation with d-i, the seed file doesn't exist,
therefore no entropy is added to the kernel's RNG.
Thanks to #596482, fixed in 2.88dsf-23, the date is also included, so there
is at least some entropy.
This should probably be fixed in squeeze too, via a SPU. I don't think it
warrants a DSA.
Cheers,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
More information about the Pkg-sysvinit-devel
mailing list