Forum index > wyBuild, wyUpdate, & AutomaticUpdater Support

Update SHA1 to SHA256 or SHA512Answered

Parnzival

Hey, I just had a look at the wyUpdater Client and I've seen, that hashes and signatures are SHA1 baseed. Is there a way to upgrade to SHA256 or SHA512?

As SHA1 is considered as insecure and can cause collisions, especially in such a big domain as patching files. It's easy to craft updates, with still a vaild signature by adding padding to the wyu file!

Is there any upgrade to a secure hashing algorithm possible?

Aug 9permalink

Parnzival

Would it also be possible to upgrade the RSA signing keys from 2048 to 4096?

Aug 9permalink

Answer

Wyatt O'Day

Yes, the next version updates all security standards to the latest and greatest.

Aug 9permalink

Parnzival

Is there already an ETA for the update? What's also planned for this version to have “all security standards to the latest and greatest”?

Thank you for your input

Aug 10permalink

Wyatt O'Day

Is there already an ETA for the update?

No. ASAP.

What's also planned for this version to have “all security standards to the latest and greatest”?

TLS 1.3 out of the box, among other things. There will be a full blog post covering the big things, and release notes covering the nitty-gritty details.

Aug 10permalink

LimeLM
Overview Pricing & Sign up Why LimeLM? Tour Log in Help
wyBuild
Overview Pricing & Buy Features What's new Help
Support forum
wyDay blog
wyDay Home
Downloads Buy Contact us Careers

Guest name
Youʼre not logged-in, but you can still post as a guest.

Email