... and we have just called consensus on this topic - see the email with the subject "Consensus on the Hash vs Base32 discussion."
This has been a long and involved discussion, and we thank everyone for hanging in there. W On Thu, Aug 6, 2015 at 12:01 PM, Hosnieh Rafiee <[email protected]> wrote: > Viktor, > >> -----Original Message----- >> From: dane [mailto:[email protected]] On Behalf Of Viktor Dukhovni >> Sent: Thursday, August 06, 2015 5:47 PM >> To: [email protected] >> Subject: Re: [dane] [openpgp] The DANE draft >> >> On Thu, Aug 06, 2015 at 04:54:24AM -0400, Paul Wouters wrote: >> >> > I really do believe that the hashing is not an affective security >> > meassure. >> >> Agreed. Wishful thinking does not make it true. Just because we'd >> like to sprinkle crypto pixie dust to make magic happen, does not mean >> it will happen. >> >> Hashes may sound more secure, but they're not really more secure, no >> matter how much we'd like them to be. > > Of course, no one expects to see a miracle from a hash function. But again > this is only making it a bit harder, even you say 1% but this is quite > different than a plain text. > > Best, > Hosnieh > > _______________________________________________ > dane mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dane -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
