[OT] Micro$oft versus security
Thomas E. Spanjaard
tgen at netphreax.net
Thu Sep 22 02:43:02 PDT 2005
walt wrote:
Anyone here agree that MD5 and SHA1 are 'weak' crypto? Any other
thoughts about the subject?
They're not really weak, but they've been under fire lately. Afaik, the
chance of finding a duplicate SHA-1 hash is still in the order of 1 in
2^63, so it's not completely broken down. However I would suggest using
WHIRLPOOL instead for hashing in programs intended to work like this for
years to come, and AES/Twofish for block crypto.
Cheers,
--
-- Thomas E. Spanjaard
tgen at xxxxxxxxxxxxx
Attachment:
signature.asc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pgp00016.pgp
Type: application/octet-stream
Size: 187 bytes
Desc: "Description: OpenPGP digital signature"
URL: <http://lists.dragonflybsd.org/pipermail/users/attachments/20050922/f47a9a5b/attachment-0021.obj>
More information about the Users
mailing list