The WebSockets specification as outlined in RFC 6455 requires that all communication from client to server be masked. This is to prevent malicious scripts from attacking badly behaving proxies. For more information about the importance of good masking, see “Talking to Yourself for Fun and Profit” by Lin-Shung Huang et al . By default
QWebSocketuses the reasonably secure
global()->generate() function. The best measure against attacks mentioned in the document above, is to use
QWebSocketover a secure connection (wss:// ). In general, always be careful to not have 3rd party script access to a
QWebSocketin your application.
- param parent
- Return type
Returns a new random 32-bit mask. The randomness depends on the RNG used to created the mask.
© 2020 The Qt Company Ltd. Documentation contributions included herein are the copyrights of their respective owners. The documentation provided herein is licensed under the terms of the GNU Free Documentation License version 1.3 as published by the Free Software Foundation. Qt and respective logos are trademarks of The Qt Company Ltd. in Finland and/or other countries worldwide. All other trademarks are property of their respective owners.