Document new rand/mt_rand features

Add reseeding on srand/mt_srand if ignore is activated
author: Stefan Esser 2014-06-09 10:54:54 +0200
committer: Stefan Esser 2014-06-09 10:54:54 +0200
commit: f073721856bbac1d427f87520a9cfb6c3fa08c5d (patch)
tree: 098f0233f55028b7c9a217fae80b9e1efb7b6a8a /suhosin.ini
parent: 85e4bb9e6255a13dcb89bdaf47b6434c49a61333 (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/suhosin.ini b/suhosin.ini
index 3d3e89b..ce8e8e9 100644
--- a/suhosin.ini
+++ b/suhosin.ini
@@ -191,6 +191,25 @@ suhosin.mail.protect = 1
 ;suhosin.memory_limit = 0
 ; -----------------------------------------------------------------------------
+; Randomness Options
+; Flag that controls if calls to srand() are ignored in favour of suhosin's 
+; own enhanced seeding - since 0.9.36 calls will trigger auto-reseeding
+;suhosin.srand.ignore = On
+; Flag that controls if calls to mt_srand() are ignored in favour of suhosin's 
+; own enhanced seeding - since 0.9.36 calls will trigger auto-reseeding
+;suhosin.mt_srand.ignore = On
+; Server configuration can add a string into the entropy generation to further
+; improve the entropy used for reseeding rand()/mt_rand()
+;suhosin.rand.seedingkey = 
+; Controls if automatic reseeding of rand() / mt_rand() is done for every
+; new request. Will improve security but decrease performance.
+; suhosin.rand.reseed_every_request = Off
+; -----------------------------------------------------------------------------
 ; Transparent Encryption Options
 ; Flag that decides if the transparent session encryption is activated or not.
author	Stefan Esser	2014-06-09 10:54:54 +0200
committer	Stefan Esser	2014-06-09 10:54:54 +0200
commit	f073721856bbac1d427f87520a9cfb6c3fa08c5d (patch)
tree	098f0233f55028b7c9a217fae80b9e1efb7b6a8a /suhosin.ini
parent	85e4bb9e6255a13dcb89bdaf47b6434c49a61333 (diff)

diff --git a/suhosin.ini b/suhosin.ini index 3d3e89b..ce8e8e9 100644 --- a/suhosin.ini +++ b/suhosin.ini
@@ -191,6 +191,25 @@ suhosin.mail.protect = 1
191	;suhosin.memory_limit = 0	191	;suhosin.memory_limit = 0
192		192
193	; -----------------------------------------------------------------------------	193	; -----------------------------------------------------------------------------
		194	; Randomness Options
		195
		196	; Flag that controls if calls to srand() are ignored in favour of suhosin's
		197	; own enhanced seeding - since 0.9.36 calls will trigger auto-reseeding
		198	;suhosin.srand.ignore = On
		199
		200	; Flag that controls if calls to mt_srand() are ignored in favour of suhosin's
		201	; own enhanced seeding - since 0.9.36 calls will trigger auto-reseeding
		202	;suhosin.mt_srand.ignore = On
		203
		204	; Server configuration can add a string into the entropy generation to further
		205	; improve the entropy used for reseeding rand()/mt_rand()
		206	;suhosin.rand.seedingkey =
		207
		208	; Controls if automatic reseeding of rand() / mt_rand() is done for every
		209	; new request. Will improve security but decrease performance.
		210	; suhosin.rand.reseed_every_request = Off
		211
		212	; -----------------------------------------------------------------------------
194	; Transparent Encryption Options	213	; Transparent Encryption Options
195		214
196	; Flag that decides if the transparent session encryption is activated or not.	215	; Flag that decides if the transparent session encryption is activated or not.