rand() used to generate secret

The PHP builtin method rand() is used to generate the secret in https://github.com/chregu/GoogleAuthenticator.php/blob/master/lib/GoogleAuthenticator.php#L78. The [PHP docs](http://php.net/manual/en/function.rand.php#refsect1-function.rand-notes) state «This function does not generate cryptographically secure values, and should not be used for cryptographic purposes. If you need a cryptographically secure value, consider using openssl_random_pseudo_bytes() instead.»


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

rand() used to generate secret #13

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

rand() used to generate secret #13

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions