Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:98119 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 66311 invoked from network); 2 Feb 2017 13:24:37 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 2 Feb 2017 13:24:37 -0000 Authentication-Results: pb1.pair.com smtp.mail=cmbecker69@gmx.de; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=cmbecker69@gmx.de; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmx.de designates 212.227.17.22 as permitted sender) X-PHP-List-Original-Sender: cmbecker69@gmx.de X-Host-Fingerprint: 212.227.17.22 mout.gmx.net Received: from [212.227.17.22] ([212.227.17.22:50907] helo=mout.gmx.net) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id B3/BA-51557-31333985 for ; Thu, 02 Feb 2017 08:24:37 -0500 Received: from [192.168.2.109] ([79.243.112.140]) by mail.gmx.com (mrgmx102 [212.227.17.168]) with ESMTPSA (Nemesis) id 0MUm1o-1cybhj40VQ-00Y9R6; Thu, 02 Feb 2017 14:24:08 +0100 To: Yasuo Ohgaki , =?UTF-8?Q?Lauri_Kentt=c3=a4?= References: <0D26A03B-6BEB-4730-8E4B-0F7D6835E683@thefsb.org> <8991137d8dd8ba915bcacd4fbc1fe88f@gmail.com> <1fa97f9f4d4c0866fb4b0f21fc68b068@gmail.com> Cc: Tom Worster , "internals@lists.php.net" , Leigh , Nikita Popov Message-ID: <842237fd-7e2d-70b4-5e0b-754bcba1fcf8@gmx.de> Date: Thu, 2 Feb 2017 14:24:28 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:i8anZmXc2oCcQSZcXFGhYqp0n3n5x28zd/NeZjMAvLKBAx/vVht DJdq3U4uIRoqjF1JzjddBjRMNO05qwytrLH4l/9lkleo6+07SriMuVgIZ7vMRh7DVsVZ1Di P2PcQZULbTv533zFCZU0OzkV3SNGqzLXMvpuekhCv7vfMK4UaPZT6BQJ2xhUYc4TDAyaon2 6kenembvRBk3dLA995qKw== X-UI-Out-Filterresults: notjunk:1;V01:K0:EvXuf2XD21Q=:Jcv42Bbs1EE8/CX16WLE9K cRNVBSp/HpE6WpsTzN23jYIkt+ZHBQco17/QqR27idPlPOFDzvbywuR5Ah/D4CiQ9Rfwi/Pvw ZTNEGTQpJBlu9fR6MeG9SpGwAvyp9/9mLGz9bM3ldzeSsFALMgY0JpWtYm0c5i2Z6SuPH52h1 rkWrNvyhv5FuGmo8++9YETpVmn4UY9/RIpl3RcOAx6+W9MmL6hAi3l0KykgLy7fk6l0eFKhSi wJqUi6rc78v3Ouydc4L+iRiwmpIRVhHZIar2gswYOXjAHj88a1ft28Kk++0i5O5SYapA/KgR5 lp9GxHTTV/TNXR/QC1xfh1d3wFevWAccxO8uJONF/MvhFjdFfb0QJCJX5Mg6k65MqaCj1EMvy P4AJH7AiawbpCSTLeuRA5PGglB2x9ZLvY//RDb4unT5baNvwqnNINBpTd6LNpzyfCXBS3vwG1 8XNxo9+WRKeOx1E7aP/R5MusaBsyn1qltySM8mtdDOV/FW1r0m+ncD+Dcw55CgpyeMHNWlfO5 RwPfnEJH/D9ishUvjJtwYin73KmnVVL4Fvxqst8ayky7Hp2dUvWmwOhJh4f83mY06gLrG1glg 4KHiahlpWDi3/jWQbIHhsJBHtpSy72kF0hj6Qmpz0ZlAugDd6xMSUSSSWpQc9Tk1jx+vEUwhF n4QRW467FOI3vmxMltamxTpVAq+0UNdZ4Fk+JrKoDsEfo131ZVnS3A0aLAea8oD+qd/mNmine fQY4Q8drAQJ/EJ0XRrdE4BwwnErww4Eh7V8bCXF5q0xa+YDqsb98X2CaQ7TcFXFf1ujWd4A05 0UFrIcGUQTij+nW0gALPM+TtGmgKz5C7IrTJdetDVbi0QoMs7SyGoSJxmLyJMgB9gKtx52OHY TErb/nxQDIhQiQqY6reJZ1OrhzYgzE/vWX0MemlNxjWIFszFY0huBvYK9/qT6JE1E/oPqjAqh 0ODZ/oc75YduNumRqfsQHe02mJQIsvOpyKnXggNBpSMU5h/unosVi8NGguPFhINImdF2YRAh4 J+vXM/aguHBLiDI8GCPtlN4= Subject: Re: [PHP-DEV] Re: Improving mt_rand() seed From: cmbecker69@gmx.de ("Christoph M. Becker") On 02.02.2017 at 12:51, Yasuo Ohgaki wrote: > Although users must never do this, but there are codes that generate random > password/access key by mt_rand(). There is also code that stores clear text passwords. How would you prevent that? IMHO, if users don't care to read the docs[1], it's their fault, and we shouldn't waste our time to fix their bugs. [1] -- Christoph M. Becker