Edward Z. Yang wrote:
Aw, come on, why is there so much contention about such a simple issue? And yes, I did slip when I started talking about birthday attacks. Sorry about that.
I find it interesting that you're advocating moving away from MD5 in a situation where the known collision weaknesses aren't relevant, yet you personally are still using SHA1 (which was broken about two years ago) in a situation which *is* susceptible to collision - and your signature didn't verify on that message (ep65i0$496$1@sea.gmane.org).