Thread: cryptsetup: encrypted filesystem on your N900
View Single Post
Relativistic is offline Relativistic
2010-01-12 , 13:42
Posts: 22 | Thanked: 8 times | Joined on Nov 2009
#9
Originally Posted by davost View Post
On the line
dd if=/dev/urandom of=$CRYPTFILE bs=1M count=$CRYPTSIZE

why not /dev/random instead? Isn't that more secure?
/dev/random blocks until more entropy can be gathered

On the N900, producing even 1 kilobyte of random data with /dev/random takes ages (it just sits there waiting for environment "noise")

/dev/urandom takes less a second to fill 1 MB of random data

Unless you are exchanging above top secret government documents, /dev/urandom is good enough.
 

The Following 3 Users Say Thank You to Relativistic For This Useful Post: