On Fri, Mar 25, 2005 at 10:41:34AM +0200, Alexei Chetroi wrote: > Date: Fri, 25 Mar 2005 10:41:34 +0200 > From: Alexei Chetroi <[EMAIL PROTECTED]> > Subject: Re: [OpenCA-Devel] MD5 collisions on X509 certs > > On Thu, Mar 24, 2005 at 11:39:10AM -0600, Tiller, Robert wrote: > > Date: Thu, 24 Mar 2005 11:39:10 -0600 > > From: "Tiller, Robert" <[EMAIL PROTECTED]> > > Subject: [OpenCA-Devel] MD5 collisions on X509 certs > > > > I've submitted a bug id for the MD5/X509 cert collision reported by > > Lenstra, Wang and Weger. > > > > The PDF files is attached to the bug report. > > > > Using SHA instead of MD5 avoids the collision. > > > > Recommend we only use SHA to sign certs. > > > > any comments? > > By default OpenCA use SHA as default MD. > On the other hand: http://www.schneier.com/blog/archives/2005/02/sha1_broken.html
Best wishes -- Alexei Chetroi Smile... Tomorrow will be worse. (c) Murphy's Law ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ OpenCA-Devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-devel
