TYPO3 Security Bulletin

Mon. 14th November, 2005

For convenience, the TYPO3 Install Tool provides a button sets the "encryptionKey" to a random value. It has been observed that only parts of the generated value are actually random. The overall key is therefore unique and -as of today- considered sufficiently secure. However, the effective key length is not the intended one.

This is a companion discussion topic for the original entry at https://new.typo3.org/article/typo3-security-bulletin-25/