----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hi, I know this might be a bit off track here but I will ask anyway... I was
just reading jdoc pages for the HttpSession object and I was wondering is
the unique session ID created by the getID() method a semi-random ID or is
it just some trivial time dependent randomness or a function of the previous
ID? How secure cryptographicaly is it? (yeah it is a pretty stupid question
but what I mean is... do you need a Cray SV1 to find the patern for the
number creation or can you just do it by hand in an hour or something?)
Does anyone know a way to generate more random numbers for session ids if
the ones getID( ) generates are not random?
Stou
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
