Red Hat Bugzilla – Bug 102152
ps aux|md5sum; ps alx|md5sum does not have very much entropy
Last modified: 2007-04-18 12:56:48 EDT
Description of problem:
def on_generateAHKeyButton_clicked(self, *args):
command = '/bin/sh'
(status , key ) = gtkExecWithCaptureStatus(command = command,
argv = [command, '-c',
alx|md5sum) | tr -cd 0-9 2>/dev/null'])
is not even close to being random enough for generating cryptographic keys.
Please use something like
dd if=/dev/random count=16 bs=1| xxd -ps
which should generate a nice random (tm) 128-bit key in hex, which the ipsec
code should handle if a 0x is added to the beginning.
Or even better, some native python with the same effect :-)
The CIPE config part does something similar.
yep, thx for the hint..