Ars Technica

Fatally weak MD5 function torpedoes crypto protections in HTTPS and IPSEC

If you thought MD5 was banished from HTTPS encryption, you’d be wrong. It turns out the fatally weak cryptographic hash function, along with its only slightly stronger SHA1 cousin, are still widely ...
Ars Technica

Fatally weak MD5 function torpedoes crypto protections in HTTPS and IPSEC

MD5 and its only slightly stronger SHA1 cousin put world on collision course. The first I can understand, but are people still using IPSEC? My experience is it's a PITA to setup compared to other ...