[issue27297] Add support for /dev/random to "secrets"
Donald Stufft
report at bugs.python.org
Sat Jun 11 14:42:30 EDT 2016
Donald Stufft added the comment:
No we should not use /dev/random (or GRND_RANDOM(. It's numbers are not "more random" than /dev/urandom outside of the narrow window of prior to /dev/urandom being fully seeded. In fact, on Linux both /dev/urandom and /dev/random use the exact same CSPRNG the only difference is that /dev/random does some snake oil to try and guess "how much random" is left (which experts widely agree is a load of manure) and will block randomly (pun intended) throughout the running of the system whenever it's snakeoil decides that it's "random is running low".
I know what the manpage says, it's basically an urban myth, unchanged largely because of political pressure
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue27297>
_______________________________________
More information about the Python-bugs-list
mailing list