From 2e2794e818fa8602dee9a0d191cd0e9457b84e7d Mon Sep 17 00:00:00 2001 From: Nick Sergeant Date: Fri, 27 Apr 2012 12:40:50 -0400 Subject: [PATCH] Fix horrible security hole for generating keys --- snipts/models.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/snipts/models.py b/snipts/models.py index bc4a57c..8262ca0 100644 --- a/snipts/models.py +++ b/snipts/models.py @@ -13,7 +13,7 @@ from pygments.formatters import HtmlFormatter from snipts.utils import slugify_uniquely -import md5 +import datetime, md5 site = Site.objects.all()[0] @@ -45,7 +45,7 @@ class Snipt(models.Model): self.slug = slugify_uniquely(self.title, Snipt) if not self.key: - self.key = md5.new(self.slug).hexdigest() + self.key = md5.new(self.slug + str(datetime.datetime.now())).hexdigest() if self.lexer == 'markdown': self.stylized = markdown(self.code, 'default')