On Tue 2020-10-27 07:52:16 +0100, Konstantinos Dalamagkidis wrote:
> currently dpkg-sig uses MD5/SHA1 for the digest. Both are insufficient
> for integrity protection and according to the Debian Wiki SHA-1 is being
> phased out.
This is really not acceptable. It's 2021, we've known that both MD5 and
SHA-1 are inappropriate to use for applications where poor
collision-resistance is a risk.
Cryptographic verification of software packages *definitely* falls into
this category. As far as i can tell (the documentation i could find is
rather sparse), there is no other purpose for dpkg-sig.
So I think its dependence on weak digests makes dpkg-sig entirely unfit
for purpose. It should be removed from debian until/unless it is
improved to use modern cryptographic primitives.
--dkg
signature.asc
Description: PGP signature