Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 12 Mar 2017 13:14:49 +0000 (UTC)
From:      =?UTF-8?Q?Dag-Erling_Sm=c3=b8rgrav?= <des@FreeBSD.org>
To:        src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-11@freebsd.org
Subject:   svn commit: r315147 - stable/11/sbin/md5
Message-ID:  <201703121314.v2CDEnWa057778@repo.freebsd.org>
index | next in thread | raw e-mail 

Author: des
Date: Sun Mar 12 13:14:49 2017
New Revision: 315147
URL: https://svnweb.freebsd.org/changeset/base/315147

Log:
  MFH (r314528): update to reflect the state of SHA-1

Modified:
  stable/11/sbin/md5/md5.1
Directory Properties:
  stable/11/   (props changed)

Modified: stable/11/sbin/md5/md5.1
==============================================================================
--- stable/11/sbin/md5/md5.1	Sun Mar 12 12:38:16 2017	(r315146)
+++ stable/11/sbin/md5/md5.1	Sun Mar 12 13:14:49 2017	(r315147)
@@ -67,21 +67,17 @@ in a secure manner before being encrypte
 key under a public-key cryptosystem such as
 .Tn RSA .
 .Pp
+The
 .Tn MD5
-has been completely broken as far as finding collisions is
-concerned, and should not be relied upon to produce unique outputs.
-This also means that
-.Tn MD5
-should not be used as part of a cryptographic signature scheme.
-At the current time (2014-05-17) there is no publicly known method to
-.Dq reverse
-MD5, i.e., to find an input given a hash value.
-.Pp
-.Tn SHA-1
-currently (2014-05-17) has no known collisions, but an attack has been
-found which is faster than a brute-force search, placing the security of
+and
 .Tn SHA-1
-in doubt.
+algorithms have been proven to be vulnerable to practical collision
+attacks and should not be relied upon to produce unique outputs, nor
+should they be used as part of a cryptographic signature scheme.
+As of 2016-03-02, there is no publicly known method to
+.Em reverse
+either algorithm, i.e. to find an input that produces a specific
+output.
 .Pp
 .Tn SHA-512t256
 is a version of
@@ -94,6 +90,8 @@ The hashes are not interchangeable.
 .Pp
 It is recommended that all new applications use
 .Tn SHA-512
+or
+.Tn SKEIN-512
 instead of one of the other hash functions.
 .Pp
 The following options may be used in any combination and must
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201703121314.v2CDEnWa057778>