diff options
author | Alexander Köplinger <alex.koeplinger@outlook.com> | 2015-12-15 22:57:57 +0300 |
---|---|---|
committer | Alexander Köplinger <alex.koeplinger@outlook.com> | 2015-12-15 22:57:57 +0300 |
commit | f378e76b0d5d3167008d3b2d43b5e4648e5f2d6e (patch) | |
tree | 83be29565ae2f8873b44b097c454ffc05a3a5550 /mcs | |
parent | 03fea967b0bc3c9b1e50b53e86d8a859380faba8 (diff) |
[signcode] Change default hashing algorithm from MD5 to SHA1
MD5 is considered insecure and switching the default to SHA1 should be better for everyone.
See the discussion on the mailing list: http://lists.ximian.com/pipermail/mono-devel-list/2015-December/043424.html
Diffstat (limited to 'mcs')
-rw-r--r-- | mcs/class/Mono.Security/Mono.Security.Authenticode/AuthenticodeFormatter.cs | 2 | ||||
-rw-r--r-- | mcs/tools/security/signcode.cs | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/mcs/class/Mono.Security/Mono.Security.Authenticode/AuthenticodeFormatter.cs b/mcs/class/Mono.Security/Mono.Security.Authenticode/AuthenticodeFormatter.cs index 3790c194f01..f91a3a95948 100644 --- a/mcs/class/Mono.Security/Mono.Security.Authenticode/AuthenticodeFormatter.cs +++ b/mcs/class/Mono.Security/Mono.Security.Authenticode/AuthenticodeFormatter.cs @@ -77,7 +77,7 @@ namespace Mono.Security.Authenticode { public string Hash { get { if (hash == null) - hash = "MD5"; + hash = "SHA1"; return hash; } set { diff --git a/mcs/tools/security/signcode.cs b/mcs/tools/security/signcode.cs index 2e8d475e643..1a8047134c0 100644 --- a/mcs/tools/security/signcode.cs +++ b/mcs/tools/security/signcode.cs @@ -35,7 +35,7 @@ namespace Mono.Tools { Console.WriteLine ("Usage: signcode [options] filename{0}", Environment.NewLine); Console.WriteLine ("\t-spc spc\tSoftware Publisher Certificate file"); Console.WriteLine ("\t-v pvk\t\tPrivate Key file"); - Console.WriteLine ("\t-a md5 | sha1\tHash Algorithm (default: MD5)"); + Console.WriteLine ("\t-a sha1 | md5\tHash Algorithm (default: SHA1)"); Console.WriteLine ("\t-$ indivisual | commercial\tSignature type"); Console.WriteLine ("\t-n description\tDescription for the signed file"); Console.WriteLine ("\t-i url\tURL for the signed file"); |