Public bug reported: md4 may be f*cked soon
openssl s_client and konqueror seem to accept md4 signatures. IMO md4 is weak - there is preimage attack [1] of 2 rounds 7 steps in 8 hours (the full md4 is 3 rounds == 48 steps == 2 rounds 16 steps. having in mind the 8 hours attack is by m$, i am inclined to believe an attack by skilful attacker will take seconds. note that it is irrelevant if any CA issues new md4 certs - it is enough to have old valid md4 signature. [1] http://sat07.ecs.soton.ac.uk/slides/kumarasubramanian-sat07-talk.pdf Inversion Attacks on Secure Hash Functions using Sat Solvers ** Affects: ubuntu Importance: Undecided Status: New -- md4 may be f*cked soon https://bugs.launchpad.net/bugs/429907 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
