[issue16184] Attack against the pseudorandom number generator
Georg Brandl
report at bugs.python.org
Wed Oct 10 17:04:41 CEST 2012
Georg Brandl added the comment:
> 1. In spite of the fact that MT states are initialized correctly,
> there is a practical method to exploit the vulnerability because of
> Python web framework peculiarities.
What does this mean exactly? If it means that this predictability can
be used for attacks on web frameworks because they assume cryptographic
strength of random numbers, please report it to those frameworks'
security channels, e.g. security at djangoproject.com.
----------
nosy: +georg.brandl
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue16184>
_______________________________________
More information about the Python-bugs-list
mailing list