mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-07 14:01:06 +07:00
Code Issues Packages Projects Releases Wiki Activity

Distrust the CPU for initial entropy

Browse Source
This commit is contained in:
madaidan 2019-12-02 16:43:00 +00:00 committed by GitHub
parent 6ca48fffdc
commit 5da2a27bf0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
etc/default/grub.d/40_distrust_cpu.cfg Normal file
View File

@ -0,0 +1,9 @@
## Copyright (C) 2019 - 2019 ENCRYPTED SUPPORT LP <adrelanos@riseup.net>
## See the file COPYING for copying conditions.
## Distrust the CPU for initial entropy as it is not possible to audit
## and may have unknown backdoors.
##
## https://en.wikipedia.org/wiki/RDRAND#Reception
## https://forums.whonix.org/t/entropy-config-random-trust-cpu-yes-or-no-rng-core-default-quality/8566/
GRUB_CMDLINE_LINUX="$GRUB_CMDLINE_LINUX random.trust_cpu=off"