Date: Sun, 18 Dec 2005 13:28:02 -0500 From: Kris Kennaway <kris@obsecurity.org> To: Igor Pokrovsky <ip@doom.homeunix.org> Cc: ports@freebsd.org Subject: Re: SHA256 checksum in ports Message-ID: <20051218182802.GA21549@xor.obsecurity.org> In-Reply-To: <20051218181222.GA9375@doom.homeunix.org> References: <20051218181222.GA9375@doom.homeunix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--/9DWx/yDrRhgMJTb Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Dec 18, 2005 at 09:12:22PM +0300, Igor Pokrovsky wrote: > Hi, >=20 > Is anyone knows what was the reason to add SHA256 checksum check > in ports? Why MD5 was insufficient? Enough progress has been made towards breaking MD5 that it is no longer considered safe to rely on for these purposes. Kris --/9DWx/yDrRhgMJTb Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDpaoyWry0BWjoQKURAuMBAKDy++f9yPpnhtQwjtdgXMHeAJIOxACfRGP1 tmQFb2H1j5acATY97+NW8IM= =Lv43 -----END PGP SIGNATURE----- --/9DWx/yDrRhgMJTb--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051218182802.GA21549>