Joel Spolsky on Twitter:
Although I appreciate that many people find Twitter to be valuable, I find it a truly awful way to exchange thoughts and ideas. It creates a mentally stunted world in which the most complicated thought you can think is one sentence long. It’s a cacophony of people shouting their thoughts into the [...]
Author Archives: Laurent
On Twitter
Random fail
Yet another case of trying to be too clever with randomness!
Security is not easy
Security is not easy. Programmers should leave things like random number and identifier generation to a library (or at least research the best way to do it). A lot of projects learned it the hard way.
Let’s talk for instance of a function I encountered about six months ago:
function generateRandomKey($len = 20)
{
$string = ”;
[...]
Posted in PHP, Symfony Tagged entropy, full disclosure, PHP, random numbers, security, Symfony 5 Comments