[wp-trac] [WordPress Trac] #51702: Warn of potentially poor/insecure password generation
WordPress Trac
noreply at wordpress.org
Wed Nov 4 21:16:42 UTC 2020
#51702: Warn of potentially poor/insecure password generation
-----------------------------+------------------------------
Reporter: desrosj | Owner: (none)
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Site Health | Version:
Severity: normal | Resolution:
Keywords: 2nd-opinion | Focuses:
-----------------------------+------------------------------
Comment (by ayeshrajans):
I think this is a great idea. I would also like to suggest that the site
tries to fetch some random bytes using `random_int`. PHP refuses to return
any value if there is no cryptographically secure random number generator,
so if we get an exception, it's a good sign that we are using our own dice
to get the random numbers.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/51702#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list