undefined | Better HN

rsync3y ago· 2 in thread

We don't store any checksums - we just store your files.

The checksum commands:

(md5, sha1, sha224, sha256, sha384, sha512, sha512t256, rmd160, skein256, skein512, skein1024, cksum)

... are available to run as you see fit.

I think you misinterpreted the comment you're responding to; they meant that "sadly, you [the user] never thought to store a high-quality hash (e.g. SHA256) for integrity comparison with your stored data; and the hash you did decide to archive for integrity-comparison was a low-quality one (e.g. MD5) that can be trivially preimage-attacked such that a cloud provider could silently replace your data with a different one — with the same low-quality hash — without your knowledge."

Nothing about rsync.net per se, other than the general idea that any data you put on "somebody else's server" can't be trusted to stay the same if you don't have a high-quality integrity-comparison content-hash of that data kept somewhere.

userbinator3y ago

MD5 still has no known preimage attacks. Neither does MD4, for which collisions are absolutely trivial to generate.

1 more reply

userbinator3y ago· 1 in thread

MD5 is weak against malice but still much stronger than something like CRC if your goal is to detect random corruption.

charcircuit3y ago

No, it's not. MD5 can still protect you from someone modifying the file without changing the hash.

throwawayallday3y ago

ZFS defaults to fletcher4 for checksum. It has never had MD5 support.

0 comments

0 comments