[Python-Dev] [Python-checkins] cpython: Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the ssl (original) (raw)

Eric Smith eric at trueblade.com
Wed May 25 12:54:22 CEST 2011

• Previous message: [Python-Dev] [Python-checkins] cpython: Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the ssl
• Next message: [Python-Dev] [Python-checkins] cpython: Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the ssl
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Victor Stinner wrote:

I already patched the doc of the random module to add a security warning. Well, you don't really need to know how a CSPRNG is implemented, just that random cannot be used for security and that ssl.RANDbytes() raises an error if was seeded with enough data.

Tell me if my warning is not clear: .. warning:: The generators of the :mod:random module should not be used for security purposes, they are not cryptographic. Use ssl.RANDbytes() if you require a cryptographically secure pseudorandom number generator. Looks good to me. Regarding style, you should probably make a link, like :func:ssl.RANDbytes().

Does "are not cryptographic" have any meaning? (I'm not an expert, just not sure). Should it not be "cryptographically secure", to match the next sentence?

Eric.

• Previous message: [Python-Dev] [Python-checkins] cpython: Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the ssl
• Next message: [Python-Dev] [Python-checkins] cpython: Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the ssl
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Python-Dev mailing list