[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ossec-list] Hash algorithms

To: ossec-list <ossec-list@xxxxxxxxxxxxxxxx>
Subject: [ossec-list] Hash algorithms
From: Jonas <jonas.esp@xxxxxxxxxxxxxx>
Date: Wed, 25 Jul 2007 10:30:39 -0700

Using straight-up MD5 or SHA-1 is not recommended, even with a salt.
Salt values mitigate one basic attack. Adaptive hashing mitigates a
more important one.

You must read
http://home.gwu.edu/~khenry/CSci381/AlternativeHashFunctions.pdf

As alternative I suggest *Tiger*. It's secure, and faster than SHA-1
as you can check here:
http://www.cryptopp.com/benchmarks.html

Follow-Ups:
- [ossec-list] Re: Hash algorithms
  - From: Daniel Cid

Prev by Date: [ossec-list] Nginx web server
Next by Date: [ossec-list] Re: Nginx web server
Previous by thread: [ossec-list] Re: Nginx web server
Next by thread: [ossec-list] Re: Hash algorithms
Index(es):
- Date
- Thread

OSSEC home | Main Index | Thread Index

OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.