BSDstats Project v2.0 ...

Nikolas Britton nikolas.britton at gmail.com
Wed Aug 9 11:03:22 UTC 2006


On 8/9/06, Nikolas Britton <nikolas.britton at gmail.com> wrote:
> On 8/9/06, Igor Robul <igorr at speechpro.com> wrote:
> > On Tue, Aug 08, 2006 at 09:30:42PM -0300, Marc G. Fournier wrote:
> > > Could create problems long term .. one thing I will be using the
> > > IPs to do is:
> > >
> > > SELECT ip, count(1) FROM systems GROUP BY ip ORDER BY count DESC;
> > >
> > > to look for any 'abnormalities' like todays with Armenia ...
> > >
> > > hashing it would make stuff like that fairly difficult ...
> > You can make _two_ hashes and then concatenate to form unique key.
> > Then you still be able to see "a lot of single IPs". Personaly, I dont
> > care very much about IP/hostname disclosure :-)
>
> I still like my idea the best for unique keys. It's a better way to
> detect hosts behind NATs, here it is again, four versions to pick
> from:
>
> # ifconfig | sha256
> cbcc2f55a340c248af7e8a10871150d827af11d7051bbc782eefa04b0603248b
> # ifconfig | sha1
> b607b9d45e6ad40c02ab20800e0d70245ab6db68
> # ifconfig | md5
> 22a2a3eca61166fb113f1a688b3dd842
> # ifconfig | cksum
> 3977021799 540
>
> The only down side is it still can be faked, just like everything else.
>
>

Based on the man pages: http://www.freebsd.org/cgi/man.cgi?
md5 first appeared in 1.1.5.1-RELEASE
sha1 first appeared in 4.10-RELEASE
sha256 first appeared in 6.0-RELEASE, 5.5-RELEASE.

That rules out sha256 and sha1, cksum was never a contender so this leaves md5.


-- 
BSD Podcasts @:
http://bsdtalk.blogspot.com/
http://freebsdforall.blogspot.com/


More information about the freebsd-questions mailing list