MobileRead Forums - View Single Post - Dealing with Kindle for PC/Mac 1.19 and KFX in calibre

mexofeed1 · 07-04-2020, 12:43 PM

I hope people know that MD5 is not secure at all. It is not a cryptographic hash function, which means that a malware author could manipulate their executable so that it generates the same MD5 as the valid Kindle for PC executable. This is quite easy to do with a program like HashClash. SHA-1 is also insecure. You should instead give out SHA-256 hashes

07-04-2020, 12:43 PM	#911
mexofeed1 Member Posts: 10 Karma: 10 Join Date: Jul 2020 Device: Supernote A5X	I hope people know that MD5 is not secure at all. It is not a cryptographic hash function, which means that a malware author could manipulate their executable so that it generates the same MD5 as the valid Kindle for PC executable. This is quite easy to do with a program like HashClash. SHA-1 is also insecure. You should instead give out SHA-256 hashes