<div dir="ltr">Thanks Scott, makes sense.</div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Sep 29, 2017 at 12:19 PM, Luke Hinds <span dir="ltr"><<a href="mailto:lhinds@redhat.com" target="_blank">lhinds@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote"><span class="">On Thu, Sep 28, 2017 at 8:38 PM, McClymont Jr, Scott <span dir="ltr"><<a href="mailto:scott.mcclymont@verizonwireless.com" target="_blank">scott.mcclymont@<wbr>verizonwireless.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><span style="font-size:12.8px">Hey All,</span><br style="font-size:12.8px"><br style="font-size:12.8px"><span style="font-size:12.8px">I've got a spec up for a change I want to implement in Glance for Queens to enhance the current checksum (md5) functionality with a stronger hash algorithm. I'm going to do this in such a way that it is easily altered in the future for new algorithms as they are released.  I'd appreciate it if someone on the security team could look it over and comment. Thanks.</span><br style="font-size:12.8px"><br style="font-size:12.8px"><span style="font-size:12.8px">Review: </span><a href="https://review.openstack.org/#/c/507568/" style="font-size:12.8px" target="_blank">https://review.opensta<wbr>ck.org/#/c/507568/</a><span class="m_6425112027120673153HOEnZb"><font color="#888888"><br clear="all"><div><br></div></font></span></div></blockquote><div><br></div></span><div>+1 , thanks for undertaking this work. Strong support from the security projects side. </div><div><br></div><div>Would be good to see all projects move on from MD5 use now, its been known to be insecure for sometime and clashes with FIPS-142 compliance.</div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class=""><div dir="ltr"><span class="m_6425112027120673153HOEnZb"><font color="#888888"><div></div>-- <br><div class="m_6425112027120673153m_-8424727207486950344gmail_signature"><div dir="ltr">Scott McClymont<br>Sr. Software Engineer<br>Verizon Cloud Platform</div></div>
</font></span></div>
<br></span>______________________________<wbr>______________________________<wbr>______________<br>
OpenStack Development Mailing List (not for usage questions)<br>
Unsubscribe: <a href="http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe" rel="noreferrer" target="_blank">OpenStack-dev-request@lists.op<wbr>enstack.org?subject:unsubscrib<wbr>e</a><br>
<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev" rel="noreferrer" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k-dev</a><br></blockquote></div>
</div></div>
<br>______________________________<wbr>______________________________<wbr>______________<br>
OpenStack Development Mailing List (not for usage questions)<br>
Unsubscribe: <a href="http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe" rel="noreferrer" target="_blank">OpenStack-dev-request@lists.<wbr>openstack.org?subject:<wbr>unsubscribe</a><br>
<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev" rel="noreferrer" target="_blank">http://lists.openstack.org/<wbr>cgi-bin/mailman/listinfo/<wbr>openstack-dev</a><br>
<br></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div style="color:rgb(136,136,136);font-size:12.8000001907349px">Adam Heczko</div><div style="color:rgb(136,136,136);font-size:12.8000001907349px">Security Engineer @ Mirantis Inc.</div></div></div>
</div>