On Fri, 09 May 2014 09:37:23 +0200, Jasper Deng jasper@jasperswebsite.com wrote:
Surely this reply was a mistake?
Doesn't look like one. The important part is this:
On Thu, May 8, 2014 at 11:46 PM, Liangent liangent@gmail.com wrote:
On Mar 23, 2012 3:38 AM, "Sam Reed" reedy@wikimedia.org wrote:
Any extension developers using mt_rand() to generate random numbers in contexts where security is required are encouraged to instead make use of the MWCryptRand class introduced with this release.
For more details, see https://bugzilla.wikimedia.org/show_bug.cgi?id=35078
I came across this mail and found this link still not viewable.
https://bugzilla.wikimedia.org/show_bug.cgi?id=35078 is, in fact, still a hidden security bug for some reason.