Reply to comment:

Philipp Kern
Wouldn't phasing out MD5 hashes altogether in favour of GPG/PGP and X.509 make more sense instead of letting everyone else suffer to protect the precious bad hashes? Or instead adding better hash flavours (like many-round hashes)?