[Python-Dev] Remove tempfile.mktemp() (original) (raw)

Anders Munch ajm at flonidan.dk
Wed Mar 20 08:25:36 EDT 2019

• Previous message (by thread): [Python-Dev] Remove tempfile.mktemp()
• Next message (by thread): [Python-Dev] Remove tempfile.mktemp()
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Steven D'Aprano:

128 bits seems like overkill: There's no birthday attack because no-one keeps 2^(ENTROPYBITS/2) files around You haven't seen my Downloads folder... :-)

I put it to you that those files are not temporary :-)

Why be so miserly with entropy?

I don't necessarily disagree.

Using 128 bits is just 22 characters using secrets.tokenurlsafe().

A little more when you take into account case-insensitive file systems.

regards, Anders

• Previous message (by thread): [Python-Dev] Remove tempfile.mktemp()
• Next message (by thread): [Python-Dev] Remove tempfile.mktemp()
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Python-Dev mailing list