This is the mail archive of the libc-alpha@sources.redhat.com mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: SHA-1 in libcrypt

To: Geoff Keating <geoffk at cygnus dot com>
Subject: Re: SHA-1 in libcrypt
From: RoboHak <RoboHak at protovision dot org>
Date: Mon, 17 Jul 2000 21:40:13 -0700
Cc: kettenis at wins dot uva dot nl, libc-alpha at sourceware dot cygnus dot com
References: <20000717094935.C16635@protovision.org> <200007172014.NAA01135@localhost.cygnus.com>

On Mon, Jul 17, 2000 at 01:14:18PM -0700, Geoff Keating wrote:
> You haven't said why you want SHA...

First of all, it's 160-bit which makes it more resistant to attacks than MD5 which is 128-bit.  Second, MD5 has attacked successfully, producing collisions.  Third, it is considered the most secure one-way hash function by many of the top cyptographers, including Bruce Schneier.  He also recommends SHA over MD5 and his own blowfish cipher, which is what OpenBSD uses.  Also, SHA is required to be used by the U.S. government, so using SHA in glibc would allow Linux systems to be used in those enviroments.

-- 
RoboHak             RoboHak@protovision.org | RoboHak@mediaone.net

-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GAT d-(--) s++:-- a-- C+++(++++) UL++++ UB++++ P+@ L+++(++++) E- 
W+++(--)$ N+@ o? K w--- O-- M-- V-- PS+ PE Y++@ PGP++@ t+ 5(+) X+@ 
R tv+@ b++@ DI+++ D++@ G e h! r-- y--
------END GEEK CODE BLOCK------

Follow-Ups:
- Re: SHA-1 in libcrypt
  - From: Geoff Keating

References:
- SHA-1 in libcrypt
  - From: RoboHak
- Re: SHA-1 in libcrypt
  - From: Geoff Keating

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]