Originally posted here by thehorse13
This paper pretty much sums up why we don't use tripwire at our shop. I pissed and moaned about it and eventually got my way when I asked who would assume responsibility when I prove that I can indeed modify filez and keep the MD5 hash the same.
Then what was your alternative to tripwire / MD5?

I am glad to see that others in the security field feel the same way that I do about MD5.
What was your beef with MD5 to begin with?