AngryParsley comments on Easy Predictor Tests - Less Wrong

11 Post author: MrHen 21 January 2010 06:40PM

You are viewing a comment permalink. View the original post to see all comments and the full post content.

Article Navigation

Comments (66)
Tags: meta karma predictions

Comments (66)

You are viewing a single comment's thread. Show more comments above.

Comment author: AngryParsley 22 January 2010 01:17:27AM 2 points [-]

MD5 isn't very useful as a cryptographic hash these days. It's not hard to find collisions for a given hash or create two plaintexts with the same hash. In fact, this has been used to create a rogue certificate authority. SHA-1 is looking pretty weak, but finding or constructing collisions with it is still infeasible.

Comment author: RobinZ 22 January 2010 01:26:48AM *  0 points [-]

To quote a certain BBC television presenter: oh, cock. Is there a better cryptographic hash than those two commonly available?

Edit: Let me clarify - of course they're out there, but I was hoping to pick something which is very easy to find, install, and use among those interested. (Anything with a reputable website I could link to for Windows & UNIX downloads would be fine, I'm sure.)

Comment author: AngryParsley 22 January 2010 01:34:25AM *  2 points [-]

Yup. There's SHA-2 and some other algorithms. Right now the NIST is holding a contest for SHA-3. It's narrowed down to 14 candidates. The winner will be announced in 2012.

ETA: Really though, unless you're some super-spy, SHA-1 should be good enough until stronger hashes become common.

Comment author: RobinZ 22 January 2010 02:01:37AM 0 points [-]

I don't even have SHA-2 on my computer - SHA-1 hash added to original comment.

Comment author: AngryParsley 22 January 2010 02:21:05AM *  0 points [-]

shasum should support all the algorithms:

ggreer@carbon:~$ echo "The quick brown fox jumps over the lazy dog" | shasum -a 224 62e514e536e4ed4633eeec99d60f97b4d95889227975d975b2ad0de3 -

ggreer@carbon:~$ echo "The quick brown fox jumps over the lazy dog" | shasum -a 512 a12ac6bdd854ac30c5cc5b576e1ee2c060c0d8c2bec8797423d7119aa2b962f7f30ce2e39879cbff0109c8f0a3fd9389a369daae45df7d7b286d7d98272dc5b1 -

Take a look at the shasum man pages for more parameters.

Comment author: RobinZ 22 January 2010 03:35:31AM 0 points [-]

Unfortunately, I don't have shasum on my MacBook - I had to use openssl.

Comment author: AngryParsley 22 January 2010 03:38:55AM 0 points [-]

Are you using an earlier version of OS X? I'm on 10.6 and it looks like shasum comes with 10.6.

Comment author: RobinZ 22 January 2010 03:47:57AM 0 points [-]

Yes - 10.5.8. With drop damage, so it's not practical or economical to invest in an upgrade. (Am considering the purchase of a netbook as a replacement sometime in the unspecified probably-more-than-a-year-from-now future.)

Powered by Reddit Powered by Reddit