Securely downloading Ubuntu

Matt Zimmerman mdz at ubuntu.com
Mon Jan 28 17:20:52 UTC 2008


On Mon, Jan 28, 2008 at 09:28:48AM -0700, Neal McBurnett wrote:
> > (I'm all in favor of moving to SHA256 or whatever is considered best
> > practice these days. I've just not heard that MD5 is really as broken as
> > I think Chris suggests here.)
> 
> One easy thing to do is to also publish sha256 sums of the CD
> images, so if MD5 preimage attacks are developed, that would help.
> 
> I think we should do that now, and consider a hash function in a
> different class also (whirlpool?).
> 
> Shipping more hash functions in the base install would help a lot in a
> crisis, so users have what they need to validate software updates.
> I guess coreutils has the md5 and sha families well covered, but
> again, something different like whirlpool could help a lot some day.

Perhaps we should publish detached signatures for each ISO rather than
signing MD5SUMS?

-- 
 - mdz




More information about the Ubuntu-devel-discuss mailing list