[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: exmh and Xauthority



Maarten Boekhold writes ("exmh and Xauthority"):
...
> # Generate a random key; Mui and Pearce offer a number of alternatives
> # for this.
> randomkey=`perl -e 'srand; printf int(rand(100000000000000000))'`

Do NOT do this.  It results in a weak cookie, meaning that someone
could fairly easily guess your cookie and take over your session and
account.

There are ways of getting a good cookie.  This isn't one.

Ian.



Reply to: