PHP: generating unique string

Question

Possible Duplicate:
PHP: How to generate a random, unique, alphanumeric string?

I'm trying to generate unique id (alpha-numeric string). I'm using curent timestamp for that. I have two questions:

1. Will md5(stamp1) be different from md5(stamp2) if stamp1 != stamp2.
2. Is there a common way to generate unique string?

PS: the easiest way of cause is to take stamp as id. Still I dont want that it was easy to find out how id is generated

Answer 1

1. Yes, in most cases, they will be different. Chances of hash collisions are very, very low (think one in billions).

2. The built in function uniqid() is great for this. You could even do md5(uniqid()), but be aware, this won't increase the entropy of the GUID. For increased entropy, you can call the function like this: uniqid('',TRUE);

Answer 2

Using hash-functions will never be truly unique, but you can put together another string that is much closer, i.e. taking their IP address and appending the request microtime, like this:

$strUnique = sprintf('%u', ip2long($_SERVER['REMOTE_ADDR'])) . floor(microtime(true) * 1000);

For this to not be unique, two visitors would have to load the page from the same IP address at the exact same microsecond, which is more unlikely than two hashes being equal.

Answer 3

I completely agree with xbonez's answer but I would like to add that depending on what you are using it for there are a few other considerations.

• If this is for a database id you can normally rely on the auto increment or other unique key functions of the database system to generate the id
• if this is for file names use tempnam instead
• you might want to use both the timestamp and a random number in the md5 since it is very conceivable that several users could hit the page on the same timestamp