On Tue, Oct 29, 2002 at 05:10:12PM -0800, Alvin Oga wrote: > am not as worried about the determined hacker/crackers that > can modify binaries such that md5sum matches my tripewire db and > other security precautions (databases and baseline) of my servers
MD5 is still believed to be secure. i.e. Nobody can modify a binary so that it has different contents but the same MD5 hash, unless they are _very_ _very_ lucky. The task becomes even more difficult if you check the length of the file as well as the hash. -- #define X(x,y) x##y Peter Cordes ; e-mail: X([EMAIL PROTECTED] , ns.ca) "The gods confound the man who first found out how to distinguish the hours! Confound him, too, who in this place set up a sundial, to cut and hack my day so wretchedly into small pieces!" -- Plautus, 200 BC
