On 04.02.2012 19:51, Hyrum K Wright wrote: > On Sat, Feb 4, 2012 at 11:06 AM, Bert Huijben <b...@qqmail.nl> wrote: >> We could change that for Ev2 but how are you going to change Subversion >> 1.0-1.7? >> >> Can I borrow your time-machine? ;-) >> >> Md5 is not unique enough to pick a base. > Is SHA-1 sufficient? Should we be using SHA-256 to identify content in Ev2?
SHA-1 has already been spoofed. But only on contrived examples. We use SHA-1 in the pristine store, so if there's a collision, the WC gets blown out of the water anyway. -- Brane
