[Openswan Users] MD5 cracked

Jacco de Leeuw jacco2 at dds.nl
Thu Aug 19 02:29:25 CEST 2004

I understand that MD5 has been cracked. Collisions have been found
which does not make MD5 suitable for general use anymore.
More info at: http://www.rtfm.com/movabletype/

SHA-1 is under attack too, but has not fallen yet. Perhaps instructions
should be posted on how to disable MD5 on Openswan?

Time to look at SHA-2 and AES-XCBC-MAC-96 (RFC3566)?

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Users mailing list