Home > mailing lists

Re: reducing our reliance on MD5 - Mailing list pgsql-hackers

From	Heikki Linnakangas
Subject	Re: reducing our reliance on MD5
Date	February 11, 2015 23:26:31
Msg-id	54DBBAD1.9010203@vmware.com Whole thread Raw
In response to	Re: reducing our reliance on MD5 (Claudio Freire <klaussfreire@gmail.com>)
Responses	Re: reducing our reliance on MD5 (Claudio Freire <klaussfreire@gmail.com>)
List	pgsql-hackers

Tree view

On 02/11/2015 06:35 AM, Claudio Freire wrote:
> Usually because handshakes use a random salt on both sides. Not sure
> about pg's though, but in general collision strength is required but
> not slowness, they're not bruteforceable.

To be precise: collision resistance is usually not important for hashes 
used in authentication handshakes. Not for our MD5 authentication method 
anyway; otherwise we'd be screwed. What you need is resistance to 
pre-image attacks.

See https://en.wikipedia.org/wiki/Cryptographic_hash_function#Properties

- Heikki

pgsql-hackers by date:

From: Robert Haas
Date: 11 February 2015, 23:21:24
Subject: Re: assessing parallel-safety

From: Robert Haas
Date: 11 February 2015, 23:49:26
Subject: Re: Parallel Seq Scan

Re: reducing our reliance on MD5 - Mailing list pgsql-hackers

Previous

Next