[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Major /dev/urandom (Security) issue?

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Jeff Cronstrom <jeff@xxxxxxxxxxxxxxx>
Date: Fri, 25 Jan 2008 09:33:40 -0500
Delivery-date: Fri, 25 Jan 2008 06:34:41 -0800
List-id: Xen user discussion <xen-users.lists.xensource.com>

Hi Ken,

On Thu, 2008-01-24 at 19:08 -0500, Ken Bass wrote:

I'm new to Xen. I'm using the Xen that comes with Centos 5.1 (which is 
3.1). When I read from /dev/urandom, the values NEVER change. My domU is 
a Centos 5.1 instance. Below I run the simple command twice and get the 
same numbers. If I run another domU I get the SAME numbers!

-bash-3.1# od -tx4 -N 16 /dev/urandom
0000000 d920a168 b904ed93 1dc8962e d1a8c0b1

-bash-3.1# od -tx4 -N 16 /dev/urandom
0000000 d920a168 b904ed93 1dc8962e d1a8c0b1

I need to figure out:
1) How to fix this
2) Isnt this a major security flaw since the random seeds are static/known?

I am using CentOS 5.1 for Dom0's and DomU's and I do not see this issue...

Maybe this will help: http://en.wikipedia.org/wiki/Urandom

Jeffrey Cronstrom

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

References:
- [Xen-users] Major /dev/urandom (Security) issue?
  - From: Ken Bass

Prev by Date: [Xen-users] How to mount the two systems which are in same subnet
Next by Date: [Xen-devel] Xen Summit Spring 2008 Proposal - UPDATE
Previous by thread: Re: [Xen-users] Major /dev/urandom (Security) issue?
Next by thread: Re: [Xen-users] Major /dev/urandom (Security) issue? [jailtime.org issue]
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.