Does an MD5 match between a torrent file and an original file from a provider mean the torrent file is safe?

Solution 1

if the MD5 I download matches the MD5 of the distrubition's website, does that mean the file has not been tampered with?

Probably hasn't been tampered with. MD5 does have known attacks on it, so it's not as good as something like SHA-1. For something like verifying if you have the correct file, MD5 is ok.

Where MD5 is sort of not ok is if you use as stored password hashes. Websites and such typically don't want to store your password, but a hash of it - and then compare the password you enter to login with a hash. In this way, they don't know your password. However, if a hacker gets a list of accounts with these hashes, they may be able to generate a password that, when put through MD5, generates the same hash (this is called a hash collision). I'm not sure how any of this works, really, just that it with MD5 hash collisions are possible and easier than they've been in the past.

Bittorrent uses SHA-1 to "know" what file it's downloading and whether pieces that peers trade are good or not. So that a malicious peer could inject bad data in the swarm is unlikely - even if one peer knew how to break SHA-1, most other peers would have to cooperate as well. You can be relatively confident that no one on the Bittorrent swarm can corrupt the download, assuming you have the correct .torrent file and it hasn't been maliciously modified to point to a different tracker or the hashes in it modified.

Solution 2

Yes it is likely okay.

I use md5 a lot in my everyday sysadmin work so I did a lot of research on security issues. Found some great links on it and also summed up security concerns and uses of hashes in a blog post

The gist of it: three main things to consider:

1) It is possible for two different files to have the same hash. In their findings, both files need to be created by the attacker i.e. the creator of the files.

2) Also the hash cannot be targeted. You cannot find a hash and then design a file to match that hash. Instead, the creator has to create two different files of identical hashes, and the actual hash values themselves cannot be "chosen" ahead of time

3) Lastly, there are a finite number of hashes, and so by pure dumb luck it's possible two random files will have the same hash (called a "collision"). One of the strengths of a good hashing algorithm is to avoid collisions.

Taking the above into account: So if you use the hash from the vendor, you know that is the actual hash you can check against with a high percentage of confidence

Here are some references for you:

A fantastic article about the security of hashing is right here: http://blog.codinghorror.com/speed-hashing/

Very in-depth article about security vulneability of hashing (and even shows an example of creating two different files with identical hashes) http://www.win.tue.nl/hashclash/SoftIntCodeSign/

My own collection of info on security and use of hash http://geekswing.com/geek/the-magic-of-hash-and-i-mean-of-the-md5-and-sha-1-vintage/

Related videos on Youtube

37 : 31

2017 - How to verify & create a Solus Budgie Live USB from Ubuntu - August 16

The Operating System World

231

09 : 25

Basic Wireshark overview - PCAPs, reconstruction, extraction & filters.

Aries Security

54

05 : 57

Using the md5sum Command

HMagellanLinux

5

03 : 33

[NTH - 1 Click] Cách kiểm tra mã MD5, SHA-1, CRC32 của file bất kì và công cụ check chính xác 100% !

Nguyễn Trọng Hiếu

4

06 : 33

How to verify ArchLinux ISO file with PGP signature, MD5 and SHA1 checksum

Aaron Stark

4

Author by

Ng Zhong Qin

Updated on September 18, 2022