Hello, On Tue 16 Jul 2019 at 08:37AM -07, Russ Allbery wrote:
> The consensus among all of us was that if you have an opportunity to pick > something other than SHA-1 when designing a new protocol, you should. But > if it's not simple to pick a different hash, SHA-1 preimage resistance is > reasonable and the other design properties of the system should dominate > any concern about SHA-1 preimage attacks. If the system is vulnerable to > collisions, that's another matter; there are viable SHA-1 collisions. But > given the design described, I don't think it is. (That said, designing > the system for hash agility if possible is certainly recommended.) Thanks for this. tag2upload is equally as hash-agile as git. -- Sean Whitton
signature.asc
Description: PGP signature
