Re: [Gnu-arch-users] crypto features and 1.2preX

gnu-arch-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] crypto features and 1.2preX

From:	Andrew Suffield
Subject:	Re: [Gnu-arch-users] crypto features and 1.2preX
Date:	Wed, 7 Jan 2004 01:21:42 +0000
User-agent:	Mutt/1.5.4i

On Wed, Jan 07, 2004 at 11:13:34AM +1100, Brian May wrote:
> >>>>> "Tom" == Tom Lord <address@hidden> writes:
> 
> Two questions:
> 
>     Tom> * MD5 Checksums of Revision Data
> 
> [...]
> 
>     Tom>   When arch retrieves a file from an archive, it computes an
>     Tom> MD5 of the file it receives and compares that to the checksum
>     Tom> file.  If they disagree, an error is signaled and the
>     Tom> operation is aborted.
> 
> 1. I have heard, from other mailing lists, that it is feasible to
> alter a file *and* *its* length* in such a way that it will produce
> exactly the same MD5 Checksum. The moral of the story was you can't
> rely on the MD5 checksum by itself, you need the MD5Sum + Length of
> the data.

Sounds like FUD to me.

-- 
  .''`.  ** Debian GNU/Linux ** | Andrew Suffield
 : :' :  http://www.debian.org/ |
 `. `'                          |
   `-             -><-          |

signature.asc
Description: Digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Gnu-arch-users] crypto features and 1.2preX, Brian May, 2004/01/06
- Re: [Gnu-arch-users] crypto features and 1.2preX, Andrew Suffield <=
- Re: [Gnu-arch-users] crypto features and 1.2preX, Florian Weimer, 2004/01/07
- Re: [Gnu-arch-users] crypto features and 1.2preX, Brian May, 2004/01/07
  - Re: [Gnu-arch-users] crypto features and 1.2preX, Colin Walters, 2004/01/07

Prev by Date: Re: [Gnu-arch-users] extended attributes
Next by Date: Re: [Gnu-arch-users] extended attributes
Previous by thread: Re: [Gnu-arch-users] crypto features and 1.2preX
Next by thread: Re: [Gnu-arch-users] crypto features and 1.2preX
Index(es):
- Date
- Thread