> From: Michael Skvarenina
>
> Tom, the hashing and/or "randomness" of the data is for security reasons,
> not just to ensure uniqueness.  We're trying to generate a random key that
> someone couldn't just edit with Notepad and resend to our server.  The
> hashing I was asking about came from a paper I read that used a hashing
> routine to generate pseudo-random numbers.  Actually Bryan Yates
> idea about
> using the UUID api sounds really good and I'm in the process of trying it
> right now.

I assume you're authenticating sessions.  If you are, I would also include a
table that links session IDs to user IDs, and only allow the same user to
access any given session.  That way, the worst that can possibly happen is a
user manages to access one of their previous sessions.

Joe


As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.