Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
MichaelGG
on Nov 15, 2013
|
parent
|
context
|
favorite
| on:
Microsoft ‘Mortally Wounds’ SHA-1
Doesn't a signed git tag rely on signing the 160-bit hash? So if SHA-1 was really weakened, you could reuse a signature by generating a repo that hashes to the same value as the signed one?
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
