nia <nia%NetBSD.org@localhost> writes: > Right now, pkgsrc uses three hash functions for ensuring the > integrity of distfiles: > > - SHA512 is a US government standard and widely considered secure > in the cryptography community. > - SHA1 is a former US government standard (withdrawn in 2011) > that is widely considered broken for ensuring file integrity. > It could cost about 45K USD for someone to generate a collision. > - RIPEMD-160 is an older less standardized hash (possibly notably, > it's used in Bitcoin). Its status is less clear-cut to me. > The digest size is quite small by today's standards. > > I'd like to remove the SHA1 hashes now[0] and stop new ones > from being generated, since they do nothing but waste CPU cycles. > This leaves us with SHA512 and RMD160. Using at least two different > hashes is a good idea, in case one is found to be broken. This seems reasonable to me and I don't see any real downsides to doing this.
Attachment:
signature.asc
Description: PGP signature