Ahh, not really - while the process thing the author describes is real - what yo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		blahrf on July 15, 2014 \| parent \| context \| favorite \| on: LibreSSL's PRNG is Unsafe on Linux Ahh, not really - while the process thing the author describes is real - what you're saying is that any two processes show the same values, and that isn't the case. the bad guy needs to control one process to read the values in a useful way, have it exit, and be able to maniuplate the system by killing or creating processes until his intended victim comes up on his selected PID. While that's far from impossible to do (just as the author's program does it) It is likely going to imply enough access to your system by the attacker that you're already pretty much p0wned.

agwa on July 15, 2014 [–]

An attacker doesn't necessarily need to know the random values themselves to pull off an attack. For example, if a nonce is re-used, an attacker might be able to decrypt data sniffed from the network. Also, creating processes to force a PID wraparound might be as simple as making repeated requests to a server.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact