Jeremey Barrett wrote:

Wei Dai writes:

...

Do we have other candidates for portable software RNGs?

What is more important, good portable software RNGs or good portable seeding mechanisms? Seems to me there are good RNGs out there, but there is virtually no way to portably guarantee a good seed.

Netscape's RNG was probably good as any, but their seed sucked, so they got cracked.

Take an RC4 state box. grab 30 or so random seeds from a hardware device, use them to mix the state box, and use the rest of RC4 to grab random values. Just an idea, very fast at least. -- thecrow@iconn.net "It can't rain all the time" RSA ENCRYPTION IN 3 LINES OF PERL --------------------------------------------------------- #!/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj $/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1 lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)