Home page logo

nanog logo nanog mailing list archives

Re: Security team successfully cracks SSL using 200 PS3's and MD5 flaw.
From: Mikael Abrahamsson <swmike () swm pp se>
Date: Sat, 3 Jan 2009 18:44:29 +0100 (CET)

On Sat, 3 Jan 2009, Hank Nussbacher wrote:

You mean like for BGP neighbors?  Wanna suggest an alternative? :-)

Well, most likely MD5 is better than the alterantive today which is to run no authentication/encryption at all.

But we should push whoever is developing these standards to go for SHA-1 or equivalent instead of MD5 in the longer term.

Mikael Abrahamsson    email: swmike () swm pp se

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]