Obsolete MD5

Damien Miller djm at mindrot.org
Tue May 5 12:18:46 AEST 2015

On Mon, 4 May 2015, Fedor Brunner wrote:

> Hi,
> are there any plans to obsolete the MD5 in OpenSSH ?
> Would it be possible to remove
> hmac-md5-etm at openssh.com,hmac-md5-96-etm at openssh.com,hmac-md5,hmac-md5-96 from
> the default list of MACs ?

You can do that if you want. There's no pressing reason to, since HMAC-MD5
is still considered safe, cf.


More information about the openssh-unix-dev mailing list