Computer Forensics: Re: hash of directory

Subject:	Re: hash of directory
Date:	Tue, 23 Nov 2004 14:23:15 -0600

Subject:

Re: hash of directory

Date:

Tue, 23 Nov 2004 14:23:15 -0600

If you zip a directory twice, will it end up the same twice? According to the Zip standard, is it guarenteed to? I don't think so, because of different compression levels and such, so I wouldn't feel terribly comfortable doing it this way. I'd recommend the concatination way.

Hey Max.
You could just ZIP the directory...
/kess
At 20:48 11/22/2004 +0100, Maximillian Dornseif wrote:
On 2004-11-15 20:25:22 +0100, Gary Kessler <kumquat@sover.net> said:
consider also that taking the hash of a file *and* the hash of the directory is a very strong combination (or hash of file plus drive or hash of directory plus drive).
How do you take the hash of a directory? Concatenating all files in that 
directory and hash the output?
Regards
Max Dornseif

----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com

<Prev in Thread]	Current Thread	[Next in Thread>
MD5 Collisions and Evidence Integrity, Ferrill, Rob RE: MD5 Collisions and Evidence Integrity, dave kleiman RE: MD5 Collisions and Evidence Integrity, Warren Kruse RE: MD5 Collisions and Evidence Integrity, Jerry Shenk Re: MD5 Collisions and Evidence Integrity, Josh Tolley Re: MD5 Collisions and Evidence Integrity, Gary Kessler hash of directory, Maximillian Dornseif Re: hash of directory, Gary Kessler Re: hash of directory, Valdis . Kletnieks Re: hash of directory, Ron <= Re: hash of directory, Geoffrey Re: hash of directory, Alexander Klimov Re: hash of directory, Valdis . Kletnieks Re: hash of directory, subscribe Re: MD5 Collisions and Evidence Integrity, Maximillian Dornseif Re: MD5 Collisions and Evidence Integrity, Jack Seward RE: MD5 Collisions and Evidence Integrity, Svein Yngvar Willassen Re: MD5 Collisions and Evidence Integrity, Valdis . Kletnieks RE: MD5 Collisions and Evidence Integrity, Svein Yngvar Willassen RE: MD5 Collisions and Evidence Integrity, Frank Knobbe

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: hash of directory, subscribe
Next by Date:	Keylogger case, dave kleiman
Previous by Thread:	Re: hash of directory, Valdis . Kletnieks
Next by Thread:	Re: hash of directory, Geoffrey
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: hash of directory, subscribe

Next by Date:

Keylogger case, dave kleiman

Previous by Thread:

Re: hash of directory, Valdis . Kletnieks

Next by Thread:

Re: hash of directory, Geoffrey

Indexes:

[Date] [Thread] [Top] [All Lists]