Isn't microtime() or mt_rand() sufficient for password reset?security.stackexchange.com3 pointsmikegirouard14 years ago