On Thu, Oct 29, 2015 at 1:07 PM, Warren Young <w...@etr-usa.com> wrote:
> On Oct 28, 2015, at 11:40 PM, Scott Robison <sc...@casaderobison.com> > wrote: > > the odds of a non-malicious collision are so close to zero that those > odds might as well be zero. > > I’ll bet there are a whole lot of people who would love to get some evil > code into pretty much every smartphone in the world by hacking the SQLite > code repo. > > That’s a powerful motivation. Don’t underestimate it. > I don't underestimate it. I'm saying it's not relevant to the discussion of using SHA1 as a means of generating identifiers (non malicious collisions), and that "Evil Governments"(TM) are the most likely source of such an attack (malicious collisions). Well, most likely for now as they would have the most resources available to mount such an attack. -- Scott Robison
_______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users