On Fri, Apr 10, 2009 at 11:25:02AM +0100, Steve Simon wrote:
> > truerand() returns (at most) 32 bits of entropy, which gets pushed into
> > srand() and then 32 bits of entropy are read back out... why not just use
> > truerand() directly?
> 
> This bit I know, truerand() reads /dev/random (see cons(1)) and 
> can only generate "a few hundred bits per second".
> 
> rand is pretty good (I think) but it is predictable, by seeding it from
> truerand() the predictability is avoided.

Be that as it may, we put in 32 bits and read out 32 bits and AFAICT the
rest of exportfs doesn't avail itself of rand().

--nwf;