On Tue, 26 Jun 2007, Ben Barrett wrote: > At *least* compare the ISO's against the public checksums (and file > sizes -- MD5 is exploitable such that files can be padded to longer > lengths to match a checksum, IIRC). > If someone can match the size *and* MD5 on some arbitrary ubuntu ISO > release, > then I think they either deserve to be successful -- or have their > methods published!!!
Yes, it is very unlikely that someone succesfully create an ISO with the same md5 and something meaningful inside. Nicolas _______________________________________________ EUGLUG mailing list [email protected] http://www.euglug.org/mailman/listinfo/euglug
