Cryptanalysis of SHA-1

Following up on the recent SHA-1 broken! rumours, Bruce Schneier has posted a follow-up article with a more in-depth cryptanalysis of SHA-1.

As I understand it, his points are that SHA-1 should be replaced on the long run, but there's no reason to panic right now.