----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
on 11/28/98 10:42 PM, Stou Sandalski <[EMAIL PROTECTED]> wrote:
> Hi, I know this might be a bit off track here but I will ask anyway... I was
> just reading jdoc pages for the HttpSession object and I was wondering is
> the unique session ID created by the getID() method a semi-random ID or is
> it just some trivial time dependent randomness or a function of the previous
> ID? How secure cryptographicaly is it? (yeah it is a pretty stupid question
> but what I mean is... do you need a Cray SV1 to find the patern for the
> number creation or can you just do it by hand in an hour or something?)
> Does anyone know a way to generate more random numbers for session ids if
> the ones getID( ) generates are not random?
Why don't you just read the source code? gezz.
-jon
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
