MD5 vulnerability

[Guest Gunna]

HI all, recently a vulneraibility was founf in the MD5 hash algorithm. I

was wondering how I can change my Server 2003 PKI Certificate template to use

SHA hash algorithm?

[Guest David H. Lipman]

From: "Gunna" <Gunna@discussions.microsoft.com>

 

| HI all, recently a vulneraibility was founf in the MD5 hash algorithm. I

| was wondering how I can change my Server 2003 PKI Certificate template to use

| SHA hash algorithm?

 

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

US-CERT Current Activity

 

Rogue MD5 SSL Certificate Vulnerability

 

Original release date: December 30, 2008 at 5:05 pm Last revised:

December 30, 2008 at 5:05 pm

 

US-CERT is aware of a public report describing how MD5 collisions can be

leveraged to generate rogue SSL CA certificates. A rogue CA certificate

could be used by an attacker to generate valid SSL certificates for

arbitrary web sites. Using these certificates in DNS redirection

attacks, an attacker could spoof an SSL protected web site and obtain

sensitive information.

 

US-CERT will provide additional information as it becomes available.

 

Relevant Url(s):

< http://www.win.tue.nl/hashclash/rogue-ca/ >

 

====

This entry is available at

http://www.us-cert.gov/current/index.html#...m_vulnerability

 

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.5 (GNU/Linux)

 

iQEVAwUBSVqcOHIHljM+H4irAQI+FAgAiOvX0JwhbEQo8tPK427TnSudZn05Ur1j

n90o0KdMHCV76ACDQrF979rr6vQiPqThGG1gPYUyr8mqUQ6K8W3qsoObVE3uuZC8

IntVzWkktjy+XW2/ud6Atmesi6X7RAxLvyE2i5B6eCEA+GSv7R4Jcx7gJq2X6uEC

PH9U/tCdbxtpujigkmsAtuVQxk689th3NBT6oz4G16qVtg6XOVhEJa53FI8gFi2a

r8R5Jmg7TXNKepq3mwCdTbC4LDMHnexbUUiTPebkSnkGI1ElZSjDo06rKZ6SsuCn

rW69w3BE7vl+bCpj6IQi0qY1WBflyZ0Qe5qvz/2I6W4FXlhYOagL6g==

=5Ktj

-----END PGP SIGNATURE-----

 

--

Dave

http://www.claymania.com/removal-trojan-adware.html

Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp