Date: Fri, 7 Jun 1996 17:05:25 -0700 (PDT) From: Steve Reid <root@edmweb.com> To: freebsd-security@freebsd.org Subject: MD5 broken Message-ID: <Pine.BSF.3.91.960607162222.175E-100000@bitbucket.edmweb.com> In-Reply-To: <199606071926.VAA18214@keltia.freenix.fr>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 7 Jun 1996, Ollivier Robert wrote: > Here is an extract from the README: > OPIE Software Distribution, Release 2.21 [snip] > * MD5 support. MD5 is now the default algorithm, though MD4 is still supported > by changing a parameter in the Makefile. This change was made because MD5 is > widely believed to be cryptographically stronger than MD4 (see RFC 1321). Sorry if I'm digging up a dead topic, but is everyone here aware that MD5 has been broken? About a month ago, Hans Dobbertin showed that he could generate MD5 collisions in just 10 hours on a Pentium PC. This is the same guy who presented a cryptanalysis of MD4 at the Fast Software Encryption workshop earlier this year. I'll put the PostScript document on my web server and hope I'm not violating any copyright laws... If you want it, the URL is http://www.edmweb.com/dobbertin.ps I'm not sure if this would affect hashed passwords, where an attacker has a hash but not a plaintext... This would certainly affect systems that uses MD5 hashes to check for tampering, such as PGP signatures and MD5 hashes used to verify binaries. ===================================================================== | Steve Reid - SysAdmin & Pres, EDM Web (http://www.edmweb.com/) | | Email: steve@edmweb.com Home Page: http://www.edmweb.com/steve/ | | PGP (2048/9F317269) Fingerprint: 11C89D1CD67287E68C09EC52443F8830 | | -- Disclaimer: JMHO, YMMV, TANSTAAFL, IANAL. -- | ===================================================================:)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.960607162222.175E-100000>