[Openswan dev] Support for hardware random number generators

[Paul Wouters]

On Thu, 20 Nov 2008, David McCullough wrote:

> With all the RNG's I have tested so far,  the FIPS check is actually
> a pretty good idea ;-)

Yes I agree. In my personal non-statistical relevant experience, only the
VIA RNG is good enough :) Intel and Amd were not. But my tests were on
a few random boards, I hope things have improved since. But I would be
very nervous using hardware random without fips checking.

Paul