Talk:Random number generation

From ArchWiki
Jump to: navigation, search

random vs urandom in this page

Looking at the discussion under Talk:Dm-crypt/Device encryption#Encryption options for LUKS mode example, and notably Myths about /dev/urandom, I believe the warning in this page (about not using urandom for long-term cryptographic keys) should be lessened and expanded: when random is absolutely necessary, and why urandom is enough for the most use-cases, even for master keys. I think it should go beyond the three unexplained links Indigo added at the end of the sentence, but I'd like to wait for wiki maintainers' opinion, as the nuances in this page could be critical for users. Dinghy (Talk) 01:24, 11 December 2015 (UTC)

I'd be in favor of at least adding external references to the Warning, can you post a draft of how you'd reword it? — Kynikos (talk) 06:27, 12 December 2015 (UTC)
I agree the links should be prepended with another sentence. They mainly cater for alternating opinions to let the reader make up own mind. The warning may also be softened or phrased more relative at least. A suitable reference to use in it may be w:RdRand#Reception. Yet, situation has changed in many aspects (e.g. more widespread application usage for random seeds, more virtual machines of different sorts, kernel changes at the same time) since the warning was added. Happy if someone can suggest an alternate wording for that. --Indigo (talk) 12:23, 1 March 2017 (UTC)

references for an update

Re above talk, I'd like to also add a little to the urandom section to account for kernel 4.8 changes. Leaving the references here I'd like to work in sometime soon, if noone is faster:

Also, without wanting to make the article a programming reference, the more widely pushed getent() should perhaps get a further mention. --Indigo (talk) 12:23, 1 March 2017 (UTC)