Re: exmh and Xauthority

To: Debian developers list <debian-devel@lists.debian.org>
Subject: Re: exmh and Xauthority
From: Ian Jackson <ian@chiark.chu.cam.ac.uk>
Date: Sat, 24 Aug 96 18:29 BST
Message-id: <[🔎] m0uuMWN-0004O4C@chiark.chu.cam.ac.uk>
In-reply-to: <[🔎] Pine.LNX.3.93.960817202737.234B-100000@niki.et.tudelft.nl>
References: <[🔎] Pine.LNX.3.93.960817202737.234B-100000@niki.et.tudelft.nl>

Maarten Boekhold writes ("exmh and Xauthority"):
...
> # Generate a random key; Mui and Pearce offer a number of alternatives
> # for this.
> randomkey=`perl -e 'srand; printf int(rand(100000000000000000))'`

Do NOT do this.  It results in a weak cookie, meaning that someone
could fairly easily guess your cookie and take over your session and
account.

There are ways of getting a good cookie.  This isn't one.

Ian.

Reply to:

References:
- exmh and Xauthority
  - From: Maarten Boekhold <boekhold@cindy.et.tudelft.nl>

Prev by Date: Re: Bug#4164: Ferret extended description has blank lines
Next by Date: Re: Shadow problems
Previous by thread: exmh and Xauthority
Next by thread: bruce was off-line
Index(es):
- Date
- Thread