Quite awhile ago I proposed strengthening create-random-string with something that required cl-ssl as a dependency and it was correctly pointed out that some implementations do not play well with cl-ssl. Would using the strong-random function from ironclad be acceptable? E.g.
(defun create-random-string (&optional (n 10) (base 16))
"Creates a random string using ironclad's strong-random function with base BASE and N digits"
(setf crypto:*prng* (crypto:make-prng :fortuna))
(subseq (with-output-to-string (s)
(loop for i to n do
(format s "~VR" base
(ironclad:strong-random 100000000000))))
0 n))
Sabra