Bug#932943: Missing SHA512 and gpg signature
On 8/4/19 6:29 PM, Bastian Blank wrote:
> On Sat, Aug 03, 2019 at 03:06:39PM +0100, Chris Boot wrote:
>> - Which checksums should we include? Our Apt repos use MD5 and SHA-256,
>> and our ISOs use MD5, SHA-1, SHA-256 and SHA-512. I'd be inclined to
>> suggest SHA-256 and SHA-512 only, personally.
>
> Only one of them. And I would go directly to SHA3 for new stuff.
Unfortunately, OpenStack Glance only shows SHA512, not SHA3, so even if
we do both, we must keep SHA2 512.
Cheers,
Thomas Goirand (zigo)
Reply to: