Skip to Content [alt-c]
In reply to LibreSSL's PRNG is Unsafe on Linux [Update: LibreSSL fork fix]
There is no such thing as a "chroot jail" on Linux. You mean a container using a mix of namespaces and device cgroups. I see no reason why /dev/urandom cannot be made available inside containers:
https://www.kernel.org/doc/Documentation/cgroups/devices.txt
If it is not there, the container is likely misconfigured.
Reply
Your comment will be public. If you would like to contact me privately, please email me. Please keep your comment on-topic, polite, and comprehensible.
Your Name: (Optional; will be published)
Your Email Address: (Optional; will not be published)
Your Website: (Optional; will be published)
monospaced
Post a Reply
Your comment will be public. If you would like to contact me privately, please email me. Please keep your comment on-topic, polite, and comprehensible.