Date: Sat, 10 Mar 2001 18:01:03 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Trevor Johnson <trevor@jpj.net> Cc: ports@FreeBSD.ORG, Alistair Crooks <agc@pkgsrc.org> Subject: Re: new message digest support in pkgsrc (fwd) Message-ID: <20010310180103.A28745@mollari.cthul.hu> In-Reply-To: <20010309162527.Q7303-100000@blues.jpj.net>; from trevor@jpj.net on Fri, Mar 09, 2001 at 04:29:32PM -0500 References: <20010309162527.Q7303-100000@blues.jpj.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--M9NhX3UHpAaciwkO Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Fri, Mar 09, 2001 at 04:29:32PM -0500, Trevor Johnson wrote: > I've added this utility to the FreeBSD ports collection (as > security/digest). A couple of points here: We have two utilities in the base system which calculate MD5/SHA1/RIPEMD160 hashes (md5 and openssl). Actually, looks like md5 only does md5, I thought it did the others too -- what is true is that we have two libraries which handle it -- libmd and libcrypto (and adding code to md5(1) would be trivial). I question the motivation for the NetBSD change. There are some theoretical weaknesses in MD5, but they aren't known to impact real-world uses. I think switching to SHA1 for buzzword-compliance would be gratuitous. Even more ludicrous would be something like what OpenBSD does: MD5 (scanssh-1.4.tar.gz) = 843796cdb9361ed7e3d862a0e3a6ce16 RMD160 (scanssh-1.4.tar.gz) = 8825be05348f1d5e8f53657a0de65f9b81320413 SHA1 (scanssh-1.4.tar.gz) = 266d9de9a7965177b5d10ec0eed3de3e199ac237 Kris --M9NhX3UHpAaciwkO Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6qtxfWry0BWjoQKURAqQ1AJ9yAfaImf16Lo4KXlVah6K5gkUVmgCg2Hgn rzJxeYZeU2t1SFHbTFRIM5Y= =4cNQ -----END PGP SIGNATURE----- --M9NhX3UHpAaciwkO-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010310180103.A28745>