On 2001-04-15 23:52:38, [EMAIL PROTECTED] wrote:
>
> > I was wondering if someone could explain to me why in the eagle book
> > it is necessary to perform an md5 twice before sending a mac_check
> > to a user [...]
>
> Any hashing algorithm worth its salt shouldn't have to be done twice.
> And doing it twice may in fact expose weaknesses in the algorithm
> (though I have no evidence to support this).
Doesn't the Eagle book mention somewhere that this is done because of a
known weakness in the MD5 algorithm?
- ams
