It gets worse...

Christopher R. Hertel crh at
Fri Aug 20 17:45:09 GMT 2004

On Fri, Aug 20, 2004 at 10:30:55AM -0700, Jeremy Allison wrote:
> I don't know if anyone here follows sci.crypt, but it looks
> like a generic method of finding MD4 collisions has been
> discovered. No published details yet.
> Summary here :
> "* Weng, Fang, Lai, and Yu have what appears to be a general method for
>   finding collisions in MD4, MD5, HAVAL-128, and RIPEMD. They
>   haven't published any details."
> This could be very bad for NTLM auth.....

...and possibly MAC signing, which is based on HMAC-MD5.  I'm still 
thinking of how this might be used.

Chris -)-----

"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team --     -)-----   Christopher R. Hertel
jCIFS Team --   -)-----   ubiqx development, uninq.
ubiqx Team --     -)-----   crh at
OnLineBook --    -)-----   crh at

More information about the samba-technical mailing list