Fix horrible security hole for generating keys

2012-04-27 12:40:50 -04:00 · 2012-04-27 12:40:50 -04:00 · 2e2794e818
parent fc22ca305f
commit 2e2794e818
1 changed files with 2 additions and 2 deletions
--- a/snipts/models.py
+++ b/snipts/models.py
@ -13,7 +13,7 @@ from pygments.formatters import HtmlFormatter

 from snipts.utils import slugify_uniquely

-import md5
+import datetime, md5


 site = Site.objects.all()[0]
@ -45,7 +45,7 @@ class Snipt(models.Model):
            self.slug = slugify_uniquely(self.title, Snipt)

        if not self.key:
-            self.key = md5.new(self.slug).hexdigest()
+            self.key = md5.new(self.slug + str(datetime.datetime.now())).hexdigest()

        if self.lexer == 'markdown':
            self.stylized = markdown(self.code, 'default')