Re: RADIUS authentication
Tom Lane <tgl@sss.pgh.pa.us>
From: Tom Lane <tgl@sss.pgh.pa.us>
To: Magnus Hagander <magnus@hagander.net>
Cc: KaiGai Kohei <kaigai@ak.jp.nec.com>, PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2010-01-19T16:38:13Z
Lists: pgsql-hackers
Magnus Hagander <magnus@hagander.net> writes: > 2010/1/18 KaiGai Kohei <kaigai@ak.jp.nec.com>: >> The random seed is initialized at BackendRun() with MyProcPid and >> the time of backend process launched. >> Then, PostgresMain() -> InitPostgres() -> PerformAuthentication() >> will be called, and this random() shall be the first call just after >> initialization of the srandom(). > Maybe switching to erand48() would make this better, and good enough? Wouldn't help in the least. The problem is not the RNG itself but lack of an adequately unpredictable random seed, and anything you do here is unlikely to be more random than what we already arranged for. regards, tom lane