>>>>> On Fri, 20 Oct 2017, Dirkjan Ochtman wrote: > As Hanno was saying, we'll have decades of warning before a break > becomes practical, so I don't think this is a real concern.
How can we be sure of that? I guess the same reasoning was applied when MD5 and SHA1 hashes were used. > I think the problem of having this discussion on gentoo-dev this way > is that people with vastly different levels of security/crypto > expertise are discussing different options without much regard for > the level of expertise (and maybe even unaware of others' relevant > expertise). > I support Hanno's suggestion of doing just SHA512, but would be > interested in hearing opinions from others who have apparent > security/crypto experience. Maybe the Security project can weigh the > suggestions as well? Don't put all eggs in one basket. Having at least one additional hash (and from a different family) doesn't cost us much and provides an upgrade path when it should become necessary. Ulrich
pgpJYEGAR7kOA.pgp
Description: PGP signature
