This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author PaulMcMillan
Recipients PaulMcMillan, alex, barry, benjamin.peterson, christian.heimes, dmalcolm, georg.brandl, gvanrossum, pitrou, vstinner
Date 2012-01-03.23:52:47
SpamBayes Score 2.5472361e-06
Marked as misclassified No
Message-id <1325634768.26.0.450418980694.issue13703@psf.upfronthosting.co.za>
In-reply-to
Content
I agree that we should enable randomness by default, and provide an easy way for users to disable it if necessary (unit test suites that explicitly depend on order being an obvious candidate).

I'll link my proposed algorithm change here, for the record:
https://gist.github.com/0a91e52efa74f61858b5

I've gotten confirmation from several other sources that the fix recommended by the presenters (just a random initialization seed) only prevents the most basic form of the attack.
History
Date User Action Args
2012-01-03 23:52:48PaulMcMillansetrecipients: + PaulMcMillan, gvanrossum, barry, georg.brandl, pitrou, vstinner, christian.heimes, benjamin.peterson, alex, dmalcolm
2012-01-03 23:52:48PaulMcMillansetmessageid: <1325634768.26.0.450418980694.issue13703@psf.upfronthosting.co.za>
2012-01-03 23:52:47PaulMcMillanlinkissue13703 messages
2012-01-03 23:52:47PaulMcMillancreate