On Thu, Mar 24, 2005 at 11:39:10AM -0600, Tiller, Robert wrote: > Date: Thu, 24 Mar 2005 11:39:10 -0600 > From: "Tiller, Robert" <[EMAIL PROTECTED]> > Subject: [OpenCA-Devel] MD5 collisions on X509 certs > > I've submitted a bug id for the MD5/X509 cert collision reported by > Lenstra, Wang and Weger. > > The PDF files is attached to the bug report. > > Using SHA instead of MD5 avoids the collision. > > Recommend we only use SHA to sign certs. > > any comments?
By default OpenCA use SHA as default MD. Best wishes -- Alexei Chetroi Smile... Tomorrow will be worse. (c) Murphy's Law ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ OpenCA-Devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-devel
