On 2/21/20, Andy KU7T <k...@ku7t.org> wrote: > Are you saying the PRNG on Windows is not good enough to use > randomblob(16) in Sqlite? All I need is a reasonable assurance that is are > unique...
The default PRNG on Windows is fine for generating globally unique identifiers. The complaint is that the seeding of the PRNG on Windows is such that an attacker could by brute force discover the seed of the PRNG by examining a sequence of generated UUIDs. In that scenario, the attacker might be able to guess the next UUID that your system will be generating. If that is a problem for your application, then fix it by compiling with -DSQLITE_WIN32_USE_UUID=1 and linking against RPCRT4.LIB. -- D. Richard Hipp d...@sqlite.org _______________________________________________ sqlite-users mailing list sqlite-users@mailinglists.sqlite.org http://mailinglists.sqlite.org/cgi-bin/mailman/listinfo/sqlite-users
