CVE-2011-3599

The Crypt::DSA aka Crypt-DSA module 1.17 and earlier for Perl, when /dev/random is absent, uses the Data::Random module, which makes it easier for remote attackers to spoof a signature, or determine the signing key of a signed message, via a brute-force attack...

Entropy Gathering Daemon (EGD) Detection

The Entropy Gathering Daemon is running on the remote host. EGD is a user space random generator for operating systems that lack /dev/random %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; ifdescription scriptid18393; scriptversion"1.15"...

CVE-2003-0094

CVE-2003-0094 affects Mandrake Linux 8.2/9.0 util-linux mcookie. The patch changed the entropy source from /dev/random to /dev/urandom, making mcookie output more predictable and potentially aiding certain attacks. The Nessus advisory notes the patch was removed in these updates, restoring a bett...

CVE-2000-0535

CVE-2000-0535 affects OpenSSL 0.9.4 and OpenSSH on FreeBSD, where FreeBSD Alpha's missing /dev/random or /dev/urandom leads to weak cryptographic keys. The issue arises from improper device checks, resulting in keys that may be easier to break. The provided documents describe the root cause and a...

Проблемы с /dev/random в FreeBSD на alpha

В версии FreeBSD для платформы alpha отсутствовало устройство /dev/random генерирующее псевдо-случайные последовательности. Тем не менее, многие крипто-программы, включая OpenSSH и OpenSSL генерировали ключи и сертификаты не учитывая этот факт...