Re: Secret votes HOWTO
* Raul Miller <moth@debian.org> [010331 15:05]:
> Alternatively, the user's debian-id could be included (since this is
> guaranteed to be unique for any valid voter).
Only if hashed. :)
> However, you still need some source of randomness (user-supplied is best,
> I think) to avoid dictionary analysis of the acknowledgement hash.
Heh, I would suggest asking /dev/random for the randomness if at all
possible. :)
--
Earthlink: The #1 provider of unsolicited bulk email to the Internet.
Reply to: