-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Curtis Sloan said: > On Wed, 2004-01-21 at 11:43, Jason Louie wrote: > The answer lies is in the way the MD5 algorithm works. It produces a > unique 128-bit checksum for any given arrangement of bytes. >
Not to throw another variable into the mix, but it is possible to have 2 completely different files with the same MD5 checksum. The algorithm creates enough different checksums to make this improbable but it is still a possibility. That is why md5 has never been sufficient evidence that files are the exact same, which is why they also use gpg/pgp to verify files. The chances of this happening are extremely small though. Cheers, Trevor -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFADzj7BsV2IjgYy+cRAnYFAKDRF58Grrgi3bZenaHyCoyYpkykWQCeOZOB eq4SBnm6o1Rx8eNJmXwx2/U= =8KKw -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca
