On Friday, 7 February 2014 at 08:30:35 UTC, Walter Bright wrote:
On 2/6/2014 7:08 PM, bearophile wrote:
That's why some languages have changed their sorting and
hashing routines to
make them a little slower but safer on default.
DoS attack resistance requires faster code, not slower code.
The specific problem was that it was possible to provoke hash
collisions by sending carefully crafted input, causing the
hash-tables to degrade to linked lists. The small performance
penalty of using collision-resistant hashes is certainly worth it
in this case.
