Just noticed a commit from Pierre last week http://svn.php.net/viewvc?view=revision&revision=313112 which changed OpenSSL to use a special Windows API call for gathering random data.
I've reverted this change so we can discuss this further. I disagree with advertising a library function and changing it to use something else. Especially when this is around random data / encryption. The OpenSSL library has been audited externally, if there is a better alternative then this patch should go upstream rather than being hacked into PHP. If we want to offer this as win32_random_data() then I'm also fine with that. - Scott -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
