Obsolete MD5
Damien Miller
djm at mindrot.org
Tue May 5 12:18:46 AEST 2015
On Mon, 4 May 2015, Fedor Brunner wrote:
> Hi,
> are there any plans to obsolete the MD5 in OpenSSH ?
>
> Would it be possible to remove
> hmac-md5-etm at openssh.com,hmac-md5-96-etm at openssh.com,hmac-md5,hmac-md5-96 from
> the default list of MACs ?
You can do that if you want. There's no pressing reason to, since HMAC-MD5
is still considered safe, cf.
http://cseweb.ucsd.edu/~mihir/papers/hmac-new.html
-d
More information about the openssh-unix-dev
mailing list