tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eric Rescorla <>
Subject Re: Duplicate session IDs are *common*
Date Fri, 10 Jan 2003 19:46:23 GMT
Dirk-Willem van Gulik <> writes:

> > ID provides a statistical probability of collision so low that
> > there is no need to explicitly check for uniqueness.
> Or just add a syncronized i++ to make sure.

There's nothing wrong with what you propose, but it's sort of
like saying "maybe I should wear a helmet at all times
because a meteor might drop on my head". Sure, it could happen,
btu it's not the thing I'd worry about.


[Eric Rescorla                         ]

To unsubscribe, e-mail:   <>
For additional commands, e-mail: <>

View raw message