OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
FreeBSD Security Archives: Re: OpenSSH patches

Re: OpenSSH patches

Kris Kennaway (krishub.freebsd.org)
Sun, 14 Nov 1999 18:30:39 -0800 (PST)

On Sun, 14 Nov 1999, Garrett Wollman wrote:

> <<On Wed, 10 Nov 1999 20:18:00 +0200, Mark Murray <markgrondar.za> said:
>
> >> No objections from me! We will of course need to import OpenSSL as well,
> >> but I can see only good things coming from that.
>
> > Only the libcrypto part of it, as far as I can see.
>
> Ummm... guys.... the RSA patent doesn't expire until *next* year.

True..we'd have to split it so that US people import a RSA-less openssl
(i.e. just openssl with the rsa directory missing), and the international
folks can import the RSA parts as well. The former could go into the
existing crypto cvsup collection, and an additional crypto-intl cvsup
collection could hold the latter.

On the other hand, is it illegal to _have_ RSA sources, as long as you
don't compile them? i.e. we can just build openssl with NO_RSA conditional
on USA_RESIDENT=YES.

Kris

----
Cthulhu for President! For when you're tired of choosing the _lesser_ of
two evils..

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

This archive was generated by hypermail 2.0b3 on Sun Nov 14 1999 - 20:30:31 CST