[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian should move away from MD5 (and at best also from SHA1) (in secure APT and friends)

On 12.10.2012 01:30, Christoph Anton Mitterer wrote:

I further looked around:
e.g. the Release file seems to only use MD5.... not so good :(


You didn't look very far / well.
$ wget -O- -q http://ftp.debian.org/debian/dists/squeeze/Release | grep -v "^ " 
Origin: Debian
Label: Debian
Suite: stable
Version: 6.0.6
Codename: squeeze
Date: Sat, 29 Sep 2012 11:31:27 UTC
Architectures: amd64 armel i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel powerpc s390 sparc 
Components: main contrib non-free
Description: Debian 6.0.6 Released 29 September 2012
MD5Sum:
SHA1:
SHA256:

Please check more carefully before making such assertions.

Regards,

Adam
Reply to: