BUG? sha-moduel returns same crc for different files
Toby Dickenson
mbel44 at dial.pipex.net
Tue Sep 19 08:26:02 EDT 2000
Erno Kuusela <erno-news at erno.iki.fi> wrote:
>>>>>> "Tim" == Tim Peters <tim_one at email.msn.com> writes:
>
> Tim> it's very easy to construct any number of distinct
> Tim> files with a given CRC32 hash; it's just *believed* to be
> Tim> intractably difficult to do the same with MD5 or SHA.
>
>actually i've read that (i hope i got this right) people have found
>ways to come up with different inputs to md5 that give the same hash,
>and that new applications/protocols should avoid using it for
>cryptographic purpouses.
If I remember correctly, the case was for a small set of pairs of
inputs which only differ by one bit. Not a useable hole in itself, but
it does cast a shadow over some uses of md5.
Toby Dickenson
tdickenson at geminidataloggers.com
More information about the Python-list
mailing list