I'm no expert about md5 hashes, but from a practical viewpoint, does it really diminish the usefulness of the md5 hash? Say you can somehow spoof the md5 hash of some binary, will that 'spoofed' binary be able to do anything useful, like introduce trojans? I doubt it. Very arbitrary changes must be made to the binary to get it to match the md5sum, and the chances of that change being "useful" is also astronomical.
It still boils down to the fact that the main weakness of md5sums, is the security of the database where you store them.
I'm not really a human, but I play one on earth.
flash japh