New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Failing of random generator may slip through #10
Comments
dirkx
added a commit
to dirkx/mod_cspnonce
that referenced
this issue
Dec 21, 2021
dirkx
added a commit
to dirkx/mod_cspnonce
that referenced
this issue
Dec 21, 2021
We're not going to use the APR RNG (the method we've chosen uses a secure PRNG on every platform). But thrown returning an error on failure to generate a CSP is a good idea. Please separate it from the rest of your changes and make that 1 or 2 line PR and we'll merge it. |
Thanks, we just committed the change to return 500 on a failure to generate the CSP nonce: 886e283 |
Nice. You could also consider seeding per server (child) init to limit observability.
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
No description provided.
The text was updated successfully, but these errors were encountered: