Message150558
I agree that we should enable randomness by default, and provide an easy way for users to disable it if necessary (unit test suites that explicitly depend on order being an obvious candidate).
I'll link my proposed algorithm change here, for the record:
https://gist.github.com/0a91e52efa74f61858b5
I've gotten confirmation from several other sources that the fix recommended by the presenters (just a random initialization seed) only prevents the most basic form of the attack. |
|
Date |
User |
Action |
Args |
2012-01-03 23:52:48 | PaulMcMillan | set | recipients:
+ PaulMcMillan, gvanrossum, barry, georg.brandl, pitrou, vstinner, christian.heimes, benjamin.peterson, alex, dmalcolm |
2012-01-03 23:52:48 | PaulMcMillan | set | messageid: <1325634768.26.0.450418980694.issue13703@psf.upfronthosting.co.za> |
2012-01-03 23:52:47 | PaulMcMillan | link | issue13703 messages |
2012-01-03 23:52:47 | PaulMcMillan | create | |
|