[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: sslUSA on non-US mirrors



At 12:54 AM 12/2/99 +0100, mho wrote:
>In message <199912012336_(_dot_)_QAA10688_(_at_)_cvs_(_dot_)_openbsd_(_dot_)_org>, Theo de Raadt writes:
> >It won't be removed.
> >
> >It's there specifically for you guys.
>
>I wasn't suggesting removing it from ftp.usa?.openbsd.org, naturally.
>
>If it is deemed necessary on ftp.openbsd.org (Canada), though, I hope
>everyone running a mirror outside US/Canada adds sslUSA to exclude_patt
>or similar (which I hope I figured out how to do just after sending the
>first mail:-)). All this applies only if I'm not mistaken when thinking
>that sslUSA contains crypto code (RSAREF) of US origin.
>
>         - mho
>
>
> >> At 15:11 -0700 on 12/1/99, Magnus Holmberg wrote:
> >> > It would probably be a good idea to remove sslUSA from ftp.openbsd.org,
> >> > as I guess most international mirrors (including ftp.se.openbsd.org)
> >> > mirrors from. We shouldn't be exporting an inferior RSA implementation...
> >> >
> >> >    - mho
> >> 
> >> 
> >> Please don't remove it -- some of us need it, at least for the next 11+ mont
> >hs.
> >> 
> >> Besides, even though sslUSA is available, you don't have to use it if
> >> you're not behind the curtain of fEAR.

why 11+ months ? Is the RSA patent about to expire ? I seem to vaguely
recall that it was filed in 1977. Someone in the know please enlighten us.




Visit your host, monkey.org