Post Syndicated from original https://lwn.net/Articles/887832/

Disruptive changes are not much fun for anyone involved, though they may be
necessary at times. Moving away from the SHA-1 hash function, at
least for cryptographic purposes, is probably one of those necessary disruptive
changes. There are better
alternatives to SHA-1, which has been “broken”
from a cryptographic perspective for quite some time now, and most of the
software components that make up a distribution can be convinced to use
other hash functions. But there are still numerous hurdles to overcome in
making that kind of a switch as a recent discussion on the Fedora devel
mailing list shows.