Re: some feedback about security from the user's point of view

To: debian-security@lists.debian.org
Subject: Re: some feedback about security from the user's point of view
From: Alexander Reichle-Schmehl <tolimar@debian.org>
Date: Mon, 24 Jan 2011 10:40:37 +0100
Message-id: <[🔎] 4D3D4915.7040102@debian.org>
In-reply-to: <[🔎] 4D3C66A0.80903@gmail.com>
References: <[🔎] AANLkTikQR+o7FSg1ttopNVCsSpfjdPs+S2aYMVAd8GCt@mail.gmail.com> <[🔎] 4D3C66A0.80903@gmail.com>

Hi!

Am 23.01.2011 18:34, schrieb AK:

> 2) Regarding MD5, while indeed it has been broken, is it not sufficient
> for simple checksumming purposes? [..] Having said that, I am all for the use of
> SHA256 or better in all newer examples/hashes, I cannot stress how
> strongly I agree, even for the sake of "modernizing".

Has actually anyone checked, if Debian might already provide these?
Oh, look, http://cdimage.debian.org/debian-cd/5.0.8/i386/iso-cd/
contains not only md5sums, bus also sha1 and sha256 (as - BTW - do the
Release files used during Package installation via Network).

So that problem is actually only outdated documentation.  Now, if
someone could create a list of our webpages, mentioning md5, we can try
to actually fix them.


Best regards,
  Alexander

Reply to:

Follow-Ups:
- Re: some feedback about security from the user's point of view
  - From: Maurycy Zarzycki <skell@tlen.pl>

References:
- some feedback about security from the user's point of view
  - From: Naja Melan <najamelan@gmail.com>
- Re: some feedback about security from the user's point of view
  - From: AK <platsakos@gmail.com>

Prev by Date: Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Next by Date: Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Previous by thread: Re: some feedback about security from the user's point of view
Next by thread: Re: some feedback about security from the user's point of view
Index(es):
- Date
- Thread