--- Peter Brodersen <[EMAIL PROTECTED]> wrote: > > http://shiflett.org/talks/oscon2004/php-security/36 > > $token = md5(uniqid(rand(), true)); > > .. is a pretty bad idea, since the output could include quotes, > newlines, low-ascii-characters, thereby messing up the form.
That's incorrect. An MD5 is a hexadecimal number. Chris -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
