TheCaconym [any]

  • 0 Posts
  • 3 Comments
Joined 4 years ago
cake
Cake day: September 19th, 2020

help-circle
  • TheCaconym [any]@hexbear.nettoLemmy@lemmy.mlLemmy 0.19 Breaking Changes
    link
    fedilink
    English
    arrow-up
    12
    arrow-down
    2
    ·
    edit-2
    1 year ago

    While SHA1 might be considered problematic security-wise in terms of collision (using it for certs today would be very bad, for example), it is not problematic in terms of preimage attacks (even MD5 isn’t broken that way IIRC), which is what truly matters in the context of 2FA / TOTPs

    As for “why not SHA256”, compatibility