On Fri, 09 May 2014 09:37:23 +0200, Jasper Deng <[email protected]>
wrote:
Surely this reply was a mistake?
Doesn't look like one. The important part is this:
On Thu, May 8, 2014 at 11:46 PM, Liangent <[email protected]> wrote:
On Mar 23, 2012 3:38 AM, "Sam Reed" <[email protected]> wrote:
> Any extension developers using mt_rand() to generate random numbers in
> contexts
> where security is required are encouraged to instead make use of the
> MWCryptRand class introduced with this release.
>
> For more details, see
> https://bugzilla.wikimedia.org/show_bug.cgi?id=35078
I came across this mail and found this link still not viewable.
https://bugzilla.wikimedia.org/show_bug.cgi?id=35078 is, in fact, still a
hidden security bug for some reason.
--
Matma Rex
_______________________________________________
Wikitech-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikitech-l
