From owner-freebsd-security Mon Sep 27 14:45:43 1999 Delivered-To: freebsd-security@freebsd.org Received: from web1003.mail.yahoo.com (web1003.mail.yahoo.com [128.11.23.93]) by hub.freebsd.org (Postfix) with SMTP id 31065156A6 for ; Mon, 27 Sep 1999 14:45:40 -0700 (PDT) (envelope-from pram512@yahoo.com) Message-ID: <19990927220015.29715.rocketmail@web1003.mail.yahoo.com> Received: from [207.149.0.59] by web1003.mail.yahoo.com; Mon, 27 Sep 1999 15:00:15 PDT Date: Mon, 27 Sep 1999 15:00:15 -0700 (PDT) From: "Me Uh, K." Reply-To: pram512@yahoo.com Subject: Fwd: Re: dump(8) Insecurity/Misconfiguration To: freebsd-security@FreeBSD.ORG MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [Mr. Grimes' reply, as mentioned in previous email] --- "Rodney W. Grimes" wrote: > From: "Rodney W. Grimes" > Subject: Re: dump(8) Insecurity/Misconfiguration > To: pram512@yahoo.com > Date: Mon, 27 Sep 1999 12:32:34 -0700 (PDT) > > [This should have really been on the list, with your > permission please forward this reply back onto the > list] > > > Just a side question, off topic - > > > > [SNIP] > > > For example, an Internet service provider is > allowed > > to install this program on their systems and > permit > > clients to use SSH to connect; however, actively > > distributing SSH to clients for the purpose of > > providing added value requires separate licensing. > > > > > Would it be all right to distribute: > > A) at the customer's request? > > Not if it ``provided added value''. I think you > would > be safest just creating a link to allow you client > to > down load it. That would then make it ``passive > distribution'' and > not ``active distribution'', and then the ``purpose > of > prociding added value'' clause looks to become a > moot point since > you didn't do it actively. > > > B) if there are no additional charges for the SSH? > > > (the actual value of the service goes up, but most > ISP > > customers don't even use telnet for anything other > > than uploading thier webpages - yet it still comes > > with most ISP software bundles, and the ISP > doesn't > > charge any additional fees for the ability, or for > the > > software- course, last I checked, it's always been > a > > free program, anyway) > > That one is a slippery slope, it would take careful > legal > evalutation for letter and intent of the license. > Just > because you didn't charge for that specific item > doesn't > mean your not using it to add value. > > > > > I know we're not lawyers here, and that answers > are > > only theoretical interpretations, ect. > > And given that we are looking at only snippets of a > larger > document much of what any of us say here could > easily be > invalidated by other parts of the document. I have > not > read any part of it other than the pieces posted in > the > thread before us. > > -- > Rod Grimes - KD7CAX - (RWG25) > rgrimes@gndrsh.dnsmgr.net > __________________________________________________ Do You Yahoo!? Bid and sell for free at http://auctions.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message