[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers


2012-04-26, 23:23:54 Timo Juhani wrote:
> Raphael Geissert <geissert@debian.org> writes:
> > print hmac_sha1_hex($v, $m);
> Yeah that sounds promising. Now we just need to fix the code that tries
> to randomize the order of entries in the tally.

Is that randomization really needed? Why not just sort based on the hashes?


Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to: