|
> From: Michael Skvarenina > > Tom, the hashing and/or "randomness" of the data is for security reasons, > not just to ensure uniqueness. We're trying to generate a random key that > someone couldn't just edit with Notepad and resend to our server. The > hashing I was asking about came from a paper I read that used a hashing > routine to generate pseudo-random numbers. Actually Bryan Yates > idea about > using the UUID api sounds really good and I'm in the process of trying it > right now. I assume you're authenticating sessions. If you are, I would also include a table that links session IDs to user IDs, and only allow the same user to access any given session. That way, the worst that can possibly happen is a user manages to access one of their previous sessions. Joe
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
