RIP MD5 ?

[eigen]

SHA0 cracked MD5 in peril

http://www.freedom-to-tinker.com/archives/000664.html

I havent looked over it closely yet,but I will today and post my opinions later.

 

[n0cmonkey]

There's a semi-interesting thread on misc@OpenBSD mailing list about it. I'm definitely glad most great OSes don't use md5 or sha-0 for passwords anymore.

EDIT: There might be a hint or two that SHA-1 is also having issues.

 

[spyordie007]

Well I dont know that it's time to bury it yet; but if the research that was presented is in fact true it means it does signal time to move away from MD5.

With all encryption it's only a matter of time before it is obsoleted.

 

[spyordie007]

I'm definitely glad most great OSes don't use md5 or sha-0 for passwords anymore.

agreed

 

[n0cmonkey]

Originally posted by: spyordie007
Well I dont know that it's time to bury it yet; but if the research that was presented is in fact true it means it does signal time to move away from MD5.

With all encryption it's only a matter of time before it is obsoleted.

It's definitely time to start working on integrating other solutions. SHA-256, blowfish hashes, etc.