I'm trying to make unique IDs for my users, so I'm concatenating their IP address with the time of their first access.
I would imagine this this would give a pretty good unique ID, but then I then I saw an unlikely flaw:
A "unique" id would be given twice if one computer had two first requests at the same time. (ie: If the user has FF and IE opened and accessed the site within the same second)
To remedy this, I decided to concatenate a random number.
That way, in this very unlikely event, there would only be a 1/10000 chance of two equal "unique" IDs.
However, I remembered that rand is only a pseudo random number. I'm thinking that if it's based on time, then that defeats the purpose of adding the random number, since the two times would be the same.
So I'm wondering, how random is rand(), and should I add the random number to the unique IDs?