sha1sum
Joel Jaeggli
joelja at darkwing.uoregon.edu
Mon Jun 13 23:05:15 UTC 2005
On Mon, 13 Jun 2005, Kenneth Porter wrote:
> --On Tuesday, June 14, 2005 12:12 AM +0530 Rahul Sundaram
> <sundaram at redhat.com> wrote:
>
>> If we are talking about risks, note that sha1sum is potentially *less*
>> riskier than md5sum. Fedora is anything but conservative though
>
> The algorithm itself is less risky. Changing the release process to use it
> is more risky. Fedora users get to test the process change.
Generating a hash collision that also happens to be a workable iso cd is a
kind of low probability event at this point. It is good to be proactive
however.
>
>
--
--------------------------------------------------------------------------
Joel Jaeggli Unix Consulting joelja at darkwing.uoregon.edu
GPG Key Fingerprint: 5C6E 0104 BAF0 40B0 5BD3 C38B F000 35AB B67F 56B2
More information about the fedora-list
mailing list