Thanks for the feedback! That's a good point of having multiple CSPRNG sources.
I'll start drafting an RFC to make openssl_random_pseudo_bytes() fail closed and deprecate the second parameter. :) Thanks, Sammy Kaye Powers sammyk.me -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
