php-yubico icon indicating copy to clipboard operation
php-yubico copied to clipboard

Published 20 hours ago verified publisher icon Yubico

Predictable Nonce.

Open StormTide opened this issue 11 years ago • 0 comments

https://github.com/Yubico/php-yubico/blob/master/Yubico.php#L291

Another instance of predictable nonce. Not sure of implication (if any) given request is hmac'd under shared key.

Should probably be openssl_random_pseudo_bytes anyway.

StormTide avatar Jan 07 '14 17:01 StormTide