Bug#656142: ITP: duff -- Duplicate file finder

To: Kamal Mostafa <kamal@whence.com>
Cc: 656142@bugs.debian.org
Subject: Bug#656142: ITP: duff -- Duplicate file finder
From: Simon Josefsson <simon@josefsson.org>
Date: Tue, 17 Jan 2012 09:56:14 +0100
Message-id: <87wr8qk8r5.fsf@latte.josefsson.org>
Reply-to: Simon Josefsson <simon@josefsson.org>, 656142@bugs.debian.org
In-reply-to: <20120116205813.24274.12515.reportbug__44378.5073388883$1326747627$gmane$org@localhost6.localdomain6> (Kamal Mostafa's message of "Mon, 16 Jan 2012 12:58:13 -0800")
References: <20120116205813.24274.12515.reportbug__44378.5073388883$1326747627$gmane$org@localhost6.localdomain6>

Kamal Mostafa <kamal@whence.com> writes:

> Package: wnpp
> Severity: wishlist
> Owner: Kamal Mostafa <kamal@whence.com>
>
>
> * Package name    : duff
>   Version         : 0.5
>   Upstream Author : Camilla Berglund <elmindreda@elmindreda.org>
> * URL             : http://duff.sourceforge.net/
> * License         : Zlib
>   Programming Lang: C
>   Description     : Duplicate file finder
>
> Duff is a command-line utility for identifying duplicates in a given set of
> files.  It attempts to be usably fast and uses the SHA family of message
> digests as a part of the comparisons.

If there aren't warnings about use of SHA1 in the tool, there should be.
While I don't recall any published SHA1 collisions, SHA1 is considered
broken and shouldn't be used if you want to trust your comparisons.  I'm
assuming the tool supports SHA256 and other SHA2 hashes as well?  It
might be useful to make sure the defaults are non-SHA1.

/Simon

Reply to:

Prev by Date: Bug#656177: Acknowledgement (RFP: appmenu-gtk -- global appmenu integration)
Next by Date: Bug#656142: ITP: duff -- Duplicate file finder
Previous by thread: Bug#656142: marked as done (ITP: duff -- Duplicate file finder)
Next by thread: Bug#588363: marked as done (RFH: otrs2 -- Open Ticket Request System)
Index(es):
- Date
- Thread