On Wed, Feb 22, 2017 at 09:07:23PM +0100, Ansgar Burchardt wrote: > The archive no longer accepts uploads signed using the SHA-1
Yay! (https://shattered.io is fun) > or RIPE-MD/160 algorithms. Uhh? AFAIK, RIPEMD160 is not compromised at all, not even in a theoretical attack. Why was this part of the decision taken? (there is a theoretical attack against RIPEMD, but that is not the same thing as RIPEMD160) -- < ron> I mean, the main *practical* problem with C++, is there's like a dozen people in the world who think they really understand all of its rules, and pretty much all of them are just lying to themselves too. -- #debian-devel, OFTC, 2016-02-12
signature.asc
Description: PGP signature
