> (I'm pretty sure the same is true of Python, but I'm less confident of the... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		wulczer on Dec 5, 2012 \| parent \| context \| favorite \| on: Exploit Information Leaks in Random Numbers from P... > (I'm pretty sure the same is true of Python, but I'm less confident of the specifics. I think this is a very fair issue to raise with PHP in general, though.) Yeah, Python's random module uses MT, but you can use PyCrypto, which provides an API-compatible cryptographically secure module (PyCrypto.Random.random).

inglesp on Dec 5, 2012 [–]

The Python docs[0] for the random module also state, quite clearly, that "the basic function random()... is completely unsuitable for cryptographic purposes".

[0] http://docs.python.org/3.3/library/random.html

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact