Monthly Archives: February 2010

Random fail

By Laurent | Published: 2010-02-28

Yet another case of trying to be too clever with randomness!

Posted in Uncategorized | Tagged microsoft, random numbers, security | Leave a comment

Update: After a year, both plugins are finally updated with a better random key generator. Security is not easy. Programmers should leave things like random number and identifier generation to a library (or at least research the best way to do it). A lot of projects learned it the hard way. Let’s talk for instance [...]

Posted in PHP, Symfony | Tagged entropy, full disclosure, PHP, random numbers, security, Symfony | 8 Comments

Categories
- Meta (3)
- PHP (14)
- Python (1)
- Symfony (15)
- Sysadmin (5)
- Technology (1)
- Uncategorized (2)
- Webdesign (1)
- WordPress (1)

Blogroll
- AlastairC
- Dilbert
- Joel on Software
- Ted Dziuba
- The Daily WTF
- xkcd
- Zed Shaw
Cool stuff
- Gentoo
- lighttpd
- Microformats
- OpenID
- Vim
Me elsewhere
- ClaimID
- GitHub
- Google Profile
- LinkedIn
- Ohloh
- Symfony plugins

Monthly Archives: February 2010

Random fail

Security is not easy

Categories

Blogroll

Cool stuff

Me elsewhere

RSS Links

Archives

Meta

Recent Posts

Recent Comments