Re: [PATCH] Add the ability to generate quality random IPs without any duplicates

[Brandon Enright <bmenrigh () ucsd edu>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 28 Aug 2009 12:14:56 -0600
David Fifield <david () bamsoftware com> wrote:

> On Fri, Aug 28, 2009 at 07:03:21AM +0000, Brandon Enright wrote:
[...snip...]
> > So I think the answer is that we should switch -iR to use my tweak
> > with 3 rounds.  I'm not attaching a patch here because my testing
> > has made a real mess of a bunch of code and it will take me a while
> > to clean it up.  If there are no objections I'll check something in
> > tomorrow.  If people want to do independent testing, let me know
> > and I'll write up a quick Nmap+Dieharder how-to.  Running Dieharder
> > is anything but quick though.
>
> These are great results and an entertaining analysis. I support you
> making the change.
>
> David Fifield

This change was committed in r15396.  I included better documentation
and links than in my original patch.

I was going to boast that this generator is slightly faster than RC4
and while that's true, ip_is_reserved() is so slow the majority of the
time isn't being spent in the generator.  I've been thinking of ways to
optimize ip_is_reserved() to make it much faster and still
maintainable.  If I come up with something good I'll send a patch.

Brandon

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)

iEYEARECAAYFAkqd2MMACgkQqaGPzAsl94Jq4gCgntfjaMAnIGgTKY3XTlsN4A8I
rcAAoL1aH6EhJ74hO4LbGT/Tq8pAvusr
=3PKq
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org