Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: Generating unique session ids
- From: Lexington Luthor <Lexington(dot)Luthor(at)gmail(dot)com>
- To: pgsql-general(at)postgresql(dot)org
- Subject: Re: Generating unique session ids
- Date: Thu, 27 Jul 2006 10:30:25 +0100
Tomasz Ostrowski wrote:
On Wed, 26 Jul 2006, Tom Lane wrote:"Antimon" <antimon(at)gmail(dot)com> writes:As the id field is primary key, it should generate a unique violation if duplicate ids created, might be seen rarely but wanted to solve it anyway.Why don't you just use a serial generator?If I may interrupt: Session id's for web cannot be predictable because this will create a security hole in application. md5(random()) is also a bad choise - very much predictable. Mr Antimon would definately better use another way of generating session ID's - for example PHP sessions and session_id(). He can also use system entropy source like /dev/urandom on POSIX systems. Regards Tometzky
Using a sequence does not mean it will be predictable.
In the past I have used something similar to this:
SELECT md5('secret_salt' || nextval('my_seq')::text)
Regards,
LL
- Follow-Ups:
- Re: Generating unique session ids
- From: Tomasz Ostrowski
- Re: Generating unique session ids
- References:
- Generating unique session ids
- From: Antimon
- Re: Generating unique session ids
- From: Tom Lane
- Re: Generating unique session ids
- From: Tomasz Ostrowski
- Generating unique session ids
- Prev by Date: Re: Database corruption with Postgre 7.4.2 on FreeBSD 6.1?
- Next by Date: Re: Mapping/DB Migration tool
- Previous by thread: Re: Generating unique session ids
- Next by thread: Re: Generating unique session ids
- Indexes: