• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Seeding random() randomly
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Seeding random() randomly

  • Subject: Re: Seeding random() randomly
  • From: Jens Alfke <email@hidden>
  • Date: Thu, 26 May 2011 20:32:48 -0700
On May 26, 2011, at 7:15 PM, Kevin Bracey wrote:

> srandom(time(NULL));

It’s never a good idea to seed a RNG with something guessable like this. (An old exploit against the Netscape browser’s SSL implementation was made possible in part by doing exactly that.)

All you have to do is call srandomdev() once; that will seed the generator used by random() with some extremely random (“high-entropy”) data read from /dev/random, which is generated by the kernel through all kinds of black magic.

—Jens

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Seeding random() randomly
      • From: Michael Hall <email@hidden>
    • Re: Seeding random() randomly
      • From: Scott Ribe <email@hidden>
References: 
 >Re: Seeding random() randomly (From: Kevin Bracey <email@hidden>)

  • Prev by Date: Re: Seeding random() randomly
  • Next by Date: Re: Seeding random() randomly
  • Previous by thread: Re: Seeding random() randomly
  • Next by thread: Re: Seeding random() randomly
  • Index(es):
    • Date
    • Thread