security - Generate cryptographically secure random numbers in php -

-

PHP's rand () function does not give a good random number. That's why I have started using mt_rand () , which has been asked to give better results. But how good are these results? Is there any way to improve them again?

My thoughts: 

  function rand_best ($ min, $ max) {$ gener = array (); {$ Generated for $ i = 0; $ i <100; $ i ++) [=] mt_rand ($ min, $ max); } Shuffle ($ generated); $ Position = MT_REND (0, 99); Return $ generated [$ position]; }

It should give you a "perfect" random number, should not it?

(PRNG) are very complex animals.

There are no real "perfect" random number generators - really the best that math functions can be pseudo-random - they are random enough for most intentions and purposes.

In fact, performing any additional actions by the number returned by a PRNG does not actually increase its randomness, and in reality, the number can be less random.

So, my best advice is to not mess with the prices returned from any PRNG. Use a PRGG that is sufficient for the desired use, and if it is not, then it can get a PRNG which can produce better results if necessary.

And obviously, it seems that the function, which is a very good PRNG, so it will probably be enough for the most comfortable use.

Edit

There was a question in which it could make less random because of taking action on a random number. For example, some RPGs can return more consistent, less random numbers in different parts of bits - the high end may be more random than the lower end.

Therefore, the end is removed, and the lower end is returned, the value can be less than the original value returned from PRNGs.

I do not find a good explanation at the moment, but I have a java documentation for the method based on it, which is designed to create a fairly random value in a specific category. In this method, the difference in the randomness of some parts of the value has been taken into account, so it can return a more random sensitivity such as a better random number than rand ()% category .


Comments

Post a Comment

Popular posts from this blog

c++ - Linux and clipboard -

-
After selecting the copies of the buffer in Linux, after the text, we can click and paste the button between the mouse. I think there is a special buffer for this, I want to use it. Programming Language: C ++ Your Library: Qt Thanks. There is just one more correct answer than Paul Dixon, which answers your needs: / P > QClipboard * clipboard = QApplication :: clipboard (); CastString Selected Text = Clipboard-> Text (QClipboard :: Selection);
Read more

What is expire header and how to achive them in ASP.NET and PHP? -

-
I have examined the performance statistics of my website today. I have received a warning (or error may occur) that is given below Add Terminal Headers Here are 15 static components without a 15-futures end date * (no end) Http://www.example.com/video/css/global.css * (no time limit) http://www.example.com/video/js/global.js * (no expiration ) Http: //www.example.com/video/images/main-bg.png what it means and how to achieve it both in PHP and ASP.Net. I am on a shared hosting server, so please tell me some ways to use the code, because I can not make any modifications at the end of the server. If I expire the header, then there is no chance that if I make changes to the CSS, then the user will not be able to remove them immediately because CSS and other files have a fixed time limit (1 month, week ) Are cached for. Is Is there any harm to using PHP? $ time = time () + 3 * 24 * 60 * 60; // 3 day headings ('End:'. GMDAT ('D, D MYH: i: s \ g \ m \ t',
Read more

sql server - How can I determine which of my SQL 2005 statistics are unused? -

-
After a few years, one of my biggest databases has deposited 73 figures out of its largest tables. With Indexes, I can run many types of reports and queries, how often / heavily specific indexes are used. What is an equivalent for data? We are running SQL 2005. To make statistics automatically managed and honest, I would like to "update statistics", "create statistics" and There is no information about any management except "drop statistics" orders. In theory, UPDATE should handle the addition and removal of statistical data. In addition, I've never heard about the amount of storage or storage taking in large amounts, so I'm not sure whether there is any reason for the alarm or not. If you are seeing a potential problem, then I would suggest running an update before, if it does not clean it, it is leaving and then it appears to be safe operation (because it is the only query optimizer Is for). I will not leave "left" in the
Read more