Tag Archives: random numbers

Random fail

By Laurent | Published: 2010-02-28

Yet another case of trying to be too clever with randomness!

Posted in Uncategorized | Also tagged microsoft, security | Leave a comment

Security is not easy. Programmers should leave things like random number and identifier generation to a library (or at least research the best way to do it). A lot of projects learned it the hard way.
Let’s talk for instance of a function I encountered about six months ago:
function generateRandomKey($len = 20)
{
$string = ”;
[...]

Posted in PHP, Symfony | Also tagged entropy, full disclosure, PHP, security, Symfony | 5 Comments

Categories
- Meta (1)
- PHP (4)
- Symfony (5)
- Sysadmin (2)
- Uncategorized (1)
- Webdesign (1)
- WordPress (1)

Blogroll
- AlastairC
- Dilbert
- Joel on Software
- The Daily WTF
- Theodo
- xkcd
Cool stuff
- Gentoo
- lighttpd
- Mercurial
- Microformats
- OpenID
- Symfony
- Vim
Me elsewhere

Tag Archives: random numbers

Random fail

Security is not easy

Categories

Blogroll

Cool stuff

Me elsewhere

Feeds

Archives

Meta

Recent Posts

Recent Comments