From 58ee95ee44b550407f1928cc004b6c03c501ef5c Mon Sep 17 00:00:00 2001
From: pjenvey <devnull@localhost>
Date: Wed, 20 Dec 2006 23:26:46 +0000
Subject: time.time() is too coarse for cert serials: use a randint instead
 (thanks jek)

---
 paste/httpserver.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'paste/httpserver.py')

diff --git a/paste/httpserver.py b/paste/httpserver.py
index 1ef3603..0bb0ed8 100755
--- a/paste/httpserver.py
+++ b/paste/httpserver.py
@@ -322,7 +322,7 @@ else:
 
         cert = OpenSSL.crypto.X509()
 
-        cert.set_serial_number(int(time.time()))
+        cert.set_serial_number(random.randint(0, sys.maxint))
         cert.gmtime_adj_notBefore(0)
         cert.gmtime_adj_notAfter(60 * 60 * 24 * 365)
         cert.get_subject().CN = '*'
-- 
cgit v1.2.1