rng-tools allows the user to point
/dev/urandom, creating a very questionable RNG loop. There is no documentation explicitly telling users that this is a bad idea, and there are examples of people suggesting this practice with no indication of its badness.
Not sure if it would be best to explicitly block
/dev/*random as the rng-tools input, or issue a warning of some kind, or something else entirely.
Log in to post a comment.