recentpopularlog in

kme : sha1   11

How to View a Certificate Fingerprint as SHA-256, SHA-1 or MD5 using OpenSSL
How to View a Certificate Thumbprint as SHA-256, SHA-1 or MD5 using OpenSSL How to View a Certificate Fingerprint as SHA-256, SHA-1 or MD5 using OpenSSL
openssl  x509  crypto  ssl  certificate  sha1  sha256  hash  fingerprint  commandline  solution 
june 2019 by kme
SHA-1 collision attacks are now actually practical and a looming danger | ZDNet
should switch to (in order of preference):

* BLAKE2b / BLAKE2s
* SHA-512/256
* SHA3-256
* SHA-384
* Any other SHA2-family hash function as a last resort

"...unless they're storing passwords! In which case, they should switch to (in order of preference):

* Argon2id with memory >= 32MiB, >= 2 rounds, and >= 2 parallelism
* scrypt / yescrypt with memory >= 32 MiB, >= 4 rounds, and >= 1 parellelism
* bcrypt (for PHP devs, password_hash() and password_verify() does the trick)
* PBKDF2-SHA512 with 85,000 iterations as a last resort

"But SHA1 should no longer be used anymore. No excuses," Arciszewski
sha1  cracking  crypto  hashing  algorithms  advice 
may 2019 by kme
Check and verify md5/sha1/sha256 checksums for MacOS X when I download files - nixCraft | https://www.cyberciti.biz/
The solution is to check `uname -s` == "Darwin" and use `shasum -a 1` instead of `sha1sum`, which only exists on Linux
mac  osx  macos  security  checksum  hash  sha1  workaround  solution 
january 2019 by kme
hashing - Is there a built-in checksum utility on Windows 7? - Super User
CertUtil is a pre-installed Windows utility that can be used to generate hash checksums:

<code>certUtil -hashfile pathToFileToCheck [HashAlgorithm]
HashAlgorithm choices: MD2 MD4 MD5 SHA1 SHA256 SHA384 SHA512</code>

So for example, the following generates an MD5 checksum for the file C:\TEMP\MyDataFile.img:

<code>CertUtil -hashfile C:\TEMP\MyDataFile.img MD5</code>

To get output similar to *Nix systems you can add some PowerShell magic:

<code style="language-powershell">$(CertUtil -hashfile C:\TEMP\MyDataFile.img MD5)[1] -replace " ",""</code>
windows  hashing  checksum  hash  md5  sha1  commandline  utility  software  solution 
april 2018 by kme
bitbucket - Smartgit SHA fingerprint of the certificate does not match - Stack Overflow
What I was flipping out about was actually the SHA1 hash for the SSL cerficate for the GitLab host, *not* the SHA1 SSH host fingerprint.

I wasn't getting man-in-the-middled by SmartGit after all.
syntevo  smartgit  ssl  sha1  certificate  hash  solution 
october 2017 by kme
security - How to verify the SSL fingerprint by command line? (wget, curl, ...) - Ask Ubuntu
The Syntevo SmartGit client was asking me to verify a SHA1 fingerprint that I thought was the SSH fingerprint, but it was this. And here's how to get that fingerprint:

<code class="language-bash">
echo -n | openssl s_client -connect torproject.org:443 \
-CAfile /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_CA.crt | \
sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' \
> ./torproject.pem
</code>

Get SHA-1 fingerprint:
<code class="language-bash">
openssl x509 -noout -in torproject.pem -fingerprint -sha1
</code>

Get SHA-256 fingerprint:
<code class="language-bash">
openssl x509 -noout -in torproject.pem -fingerprint -sha256
</code>
ssl  openssl  certificate  sha1  fingerprint  sysadmin  webmaster  solution 
october 2017 by kme

Copy this bookmark:





to read