Reactions to story from Hanno's blog
Hash-collissions in real world scenarios
http://www.hboeck.de/ archives/ 617-Hash-collissions-in-real-world-scenarios.html
I just read an article about the recent wordpress vulnerability (if you're running wordpress, please update to 2.5.1 NOW), one point raised my attention: The attack uses MD5-collisions. I wrote some articles about hash collisions a while back. Short introduction: A cryptographic hash-function is a function where you can put in any data and you'll get a unique, fixed-size value. »unique« in this case scenario means that it's very hard to calculate two different strings matching to the same hash value. If you can do that, the function should be considered broken.
More rising blog posts
Recent posts from Hanno's blog
-
Im Wendland angekommen
15 days ago -
Ubuntu advertisement in the tram of Berlin
21 days ago -
OpenStreetMap in der Tomorrow
25 days ago
