[nycphp-talk] NEW PHundamentals Question
Jeff Siegel
jsiegel1 at optonline.net
Wed Feb 11 05:10:25 EST 2004
What do you do on the "receiving" end, so to speak, to verify that the
key you receive is the one that you generated?
Jeff
jon baer wrote:
> should have mentioned this, but the method to generate "priv_key" was:
>
> $priv_key = md5(uniqid(rand(), true));
>
> which i find to be the best secure method ...
>
> - jon
>
>
>>Any reason to choose one over the other?
>>
>>Jeff
>>
>>jon baer wrote:
>>
>>
>>>the last method was session hashing for the page to create a unique
>
> entry
>
>>>token and then hiding it ...
>>>
>>><input type="hidden" name="priv_key" value="32-bit/md5">
>
>
>
> _______________________________________________
> talk mailing list
> talk at lists.nyphp.org
> http://lists.nyphp.org/mailman/listinfo/talk
>
More information about the talk
mailing list