Thought you might like to know
davidsplash last edited by
Breaking news (2005/02/17): The SHA-1 hash function has been cryptographically attacked successfully. We note that EndCryptor does not use SHA-1 but uses a Davies-Meyer construction from the block cipher Rijndael (AES).
PowerArchiver uses SHA-1 only for crypting CRCs of original files in PAE format, and not for encrypting passwords. This makes our PAE files still safe enought, since hacking original CRC file still doesn’t give you original file nor password for decrypting original file.
Brut-force attach on PAE files are also much slower since you have to decrypt file, then calculate CRC of decrypted file and then see if is matches with SHA-1 CRC in header.