On Tue, Feb 20, 2007 at 12:09:59PM -0800, Michael K. Edwards ([EMAIL 
PROTECTED]) wrote:
> On 2/20/07, Michael K. Edwards <[EMAIL PROTECTED]> wrote:
> >Correct.  That's called a "weak hash", and Jenkins is known to be a
> >thoroughly weak hash.  That's why you never, ever use it without a
> >salt, and you don't let an attacker inspect the hash output either.
> 
> Weak in a cryptographic sense, of course.  Excellent avalanche
> behavior, though, which is what you care about in a salted hash.
> http://en.wikipedia.org/wiki/Hash_table

I repeat again - add your salt into jenkins hash and I will show you
that it has the same problems.
So, I'm waiting for your patch for jhash_*_words().

> I know nothing about data structures and algorithms except what I read
> on the Internet.  But you'd be amazed what's on the Internet.
> 
> Cheers,
> - Michael

-- 
        Evgeniy Polyakov
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Reply via email to