From owner-freebsd-security@FreeBSD.ORG  Mon Dec  3 11:12:48 2007
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id AE2FF16A420
	for <freebsd-security@freebsd.org>;
	Mon,  3 Dec 2007 11:12:48 +0000 (UTC)
	(envelope-from freebsd@meijome.net)
Received: from sigma.octantis.com.au (ns2.octantis.com.au [207.44.189.124])
	by mx1.freebsd.org (Postfix) with ESMTP id 6219F13C458
	for <freebsd-security@freebsd.org>;
	Mon,  3 Dec 2007 11:12:48 +0000 (UTC)
	(envelope-from freebsd@meijome.net)
Received: (qmail 24630 invoked from network); 3 Dec 2007 05:12:47 -0600
Received: from 124-170-149-217.dyn.iinet.net.au (HELO localhost)
	(124.170.149.217)
	by sigma.octantis.com.au with (DHE-RSA-AES256-SHA encrypted) SMTP;
	3 Dec 2007 05:12:47 -0600
Date: Mon, 3 Dec 2007 22:12:43 +1100
From: Norberto Meijome <freebsd@meijome.net>
To: jason <freebsd-security@dfmm.org>
Message-ID: <20071203221243.2377393d@meijome.net>
In-Reply-To: <20071202230434.O27936@treehorn.dfmm.org>
References: <20071203154412.461d0faf@meijome.net>
	<20071202230434.O27936@treehorn.dfmm.org>
X-Mailer: Claws Mail 3.0.2 (GTK+ 2.12.1; i386-portbld-freebsd7.0)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Cc: freebsd-security@freebsd.org
Subject: Re: MD5 Collisions...
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Dec 2007 11:12:48 -0000

On Sun, 2 Dec 2007 23:21:21 -0800 (PST)
jason <freebsd-security@dfmm.org> wrote:

> Anyone in a position to understand what's going on here already knew.  And 
> anyone who doesn't understand these results is not going to be able to 
> make any effective use of an advisory, and they're just going to get 
> scared over nothing.  Therefore, I don't think any kind of advisory is 
> warranted.

fair enough. I also know that ports,etc dont solely rely on md5, but I think the text in man md5 could be made a bit updated a bit, or maybe point to some external reference with more updated information... 

just my $0.01 anyway ;)
thanks,
B
_________________________
{Beto|Norberto|Numard} Meijome

Two things have come out of Berkeley, Unix and LSD.
It is uncertain which caused the other.

I speak for myself, not my employer. Contents may be hot. Slippery when wet. Reading disclaimers makes you go blind. Writing them is worse. You have been Warned.