|
|
|
|
|
|
by acidictadpole
2327 days ago
|
|
|
The author does seem to concede that hitting all the checkmarks in an attack on git would be pretty tricky: > An attacker would not just have to do that, though; this new version would have to contain the desired hostile code, still function as a working floppy driver, and not look like an obfuscated C code contest entry The whole idea is that they want to switch away before these things become likely. They are unlikely now, but SHA-1 is only getting weaker as time goes by and more research is done. |
|
|
The full quote here is even better:
"and not look like an obfuscated C code contest entry (at least not more than it already does)."