Replace the last rand() with mt_rand() Better entropy, faster. Also fixed a few "it's" typos.

commit: 3a3d5f6c2320a90436de241af41fe22df7344728 [log] [tgz]
author: vlakoff <vlakoff@gmail.com> Thu Oct 17 22:22:16 2013 +0200
committer: vlakoff <vlakoff@gmail.com> Thu Oct 17 22:22:16 2013 +0200
tree: af1d16596d7a92f98187bb0d9a1006fe86680bf4
parent: 3d759d73d441655bbf7b441dadd87a10d6732855 [diff] [blame]
diff --git a/system/core/Security.php b/system/core/Security.php
index 368e17d..6f5f5cb 100644
--- a/system/core/Security.php
+++ b/system/core/Security.php

@@ -884,7 +884,7 @@
 	{
 		if ($this->_csrf_hash === '')
 		{
-			// If the cookie exists we will use it's value.
+			// If the cookie exists we will use its value.
 			// We don't necessarily want to regenerate it with
 			// each page load since a page could contain embedded
 			// sub-pages causing this feature to fail
@@ -894,7 +894,7 @@
 				return $this->_csrf_hash = $_COOKIE[$this->_csrf_cookie_name];
 			}
 
-			$this->_csrf_hash = md5(uniqid(rand(), TRUE));
+			$this->_csrf_hash = md5(uniqid(mt_rand(), TRUE));
 			$this->csrf_set_cookie();
 		}
commit	3a3d5f6c2320a90436de241af41fe22df7344728	[log] [tgz]
author	vlakoff <vlakoff@gmail.com>	Thu Oct 17 22:22:16 2013 +0200
committer	vlakoff <vlakoff@gmail.com>	Thu Oct 17 22:22:16 2013 +0200
tree	af1d16596d7a92f98187bb0d9a1006fe86680bf4
parent	3d759d73d441655bbf7b441dadd87a10d6732855 [diff] [blame]