mwhuen
asked on
session cookie
i want to set session cookie,
i saw some cookies of 32 bits from other web sites,
how can they set them?
how to generate a 32bits session cookie?
any one can provide me the code and explaination?
i saw some cookies of 32 bits from other web sites,
how can they set them?
how to generate a 32bits session cookie?
any one can provide me the code and explaination?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Do you mean 32 bits, or 32 digits?
``Anyone who attempts to generate random numbers by deterministic means is, of course, living in a state of sin.'' --John von Neumann
A problem with using rand to generate secure random numbers is that an attacker can deduce the seed to reproduce your values
You might try to pre-generate a list of random values to use, using the PGP key generator, or taking a large set of Math::TrulyRandom values and hashing it down with a cryptographically strong hash function...
``Anyone who attempts to generate random numbers by deterministic means is, of course, living in a state of sin.'' --John von Neumann
A problem with using rand to generate secure random numbers is that an attacker can deduce the seed to reproduce your values
You might try to pre-generate a list of random values to use, using the PGP key generator, or taking a large set of Math::TrulyRandom values and hashing it down with a cryptographically strong hash function...
ASKER
i mean 32 digits,
how can i generate secure cookies?
can you show some examples or codes?
thanks
how can i generate secure cookies?
can you show some examples or codes?
thanks
ASKER
Comment accepted as answer
ASKER
i still can't get an good answer about session cookie/value.
"i still can't get an good answer about session cookie/value."
i think in that case you should not have awarded the points to me.
i would suggest that you explain clearly what you are looking for. in the explanation above you have mentioned about 32 bit secure cookies.
you need to let us know..
* if you are setting the cookie from a secure server (https://www.xyz.com..).
* if you want the session id to be 32 chars in length.
i think in that case you should not have awarded the points to me.
i would suggest that you explain clearly what you are looking for. in the explanation above you have mentioned about 32 bit secure cookies.
you need to let us know..
* if you are setting the cookie from a secure server (https://www.xyz.com..).
* if you want the session id to be 32 chars in length.
i mean the value of the cookie is 32bit long.
cookie(-name=>bighuen, -value=>'12345678901234567
the value is 32 bits long,
how can i randomly generate it?
the reason for 32bit is for security?
any security in setting cookies?