Phobos randomUUID is not suitable to generate secrets
Cym13
cpicard at purrfect.fr
Mon Aug 31 16:31:48 UTC 2020
On Monday, 31 August 2020 at 16:10:33 UTC, Steven Schveighoffer
wrote:
> On 8/31/20 9:17 AM, WebFreak001 wrote:
>>
>> Thanks for the post! Read the crypto review before and surely
>> enough this time again it was really fun to read through the
>> whole post. I also love the random pictures in your posts :p
>
> I share this sentiment, great article!
Thank you both :)
> I had to look it up to make sure. The session id producer uses
> what is recommended in the article:
>
> https://github.com/vibe-d/vibe.d/blob/master/crypto/vibe/crypto/cryptorand.d#L125
>
> whew!
Yes, cryptorand.d is good. Also, I know I'm trying to detonate a
bomb here, but I made sure it wasn't *that* big of a bomb first.
If it got you looking for randomUUID in your projects or others
half of my goal is accomplished already. There cannot be too many
eyes on the matter IMHO.
More information about the Digitalmars-d
mailing list