As shown in MD5 Collisions, it is (relatively) easy to construct 2 documents that have the same MD5 hash. Which means, that you should not trust MD5 as a digital signature.

vrypan — panayotis vryonis
My blog is a digital scrapbook of ideas, thoughts and personal events.
My home is vrypan.net.