From: Nikodemus S. <nik...@ra...> - 2009-07-10 08:15:45
|
2009/7/9 Carlos Konstanski <cko...@pi...>: > I have a need for better randomness. The situation: I have an > araneida web server. I use the following function to generate a > session id cookie: Could you perhaps just use UUIDs instead? http://en.wikipedia.org/wiki/Universally_Unique_Identifier http://www.dardoria.net/software/uuid.html Then again, not being a web programmer I'm not quite certain what properties one wants in a sessionid. (Eg. why timestamp + uniquefying counter is worse than a random sessionid?) Cheers, -- Nikodemus |