diff options
Diffstat (limited to 'changes/bug17694_strongest')
| -rw-r--r-- | changes/bug17694_strongest | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/changes/bug17694_strongest b/changes/bug17694_strongest new file mode 100644 index 0000000000..0a8954a25e --- /dev/null +++ b/changes/bug17694_strongest @@ -0,0 +1,6 @@ + o Minor features (security): + - Never use the system entropy output directly for anything besides + seeding the PRNG. When we want to generate important keys, instead + of using system entropy directly, hash it with the PRNG stream. + This may help resist certain attacks based on broken OS entropy + implementations. Closes part of ticket 17694.
\ No newline at end of file |