From owner-freebsd-security Tue Nov 2 9:49:44 1999 Delivered-To: freebsd-security@freebsd.org Received: from tao.thought.org (tao.tera.com [207.108.223.55]) by hub.freebsd.org (Postfix) with ESMTP id 181F714CB6; Tue, 2 Nov 1999 09:49:24 -0800 (PST) (envelope-from kline@tao.thought.org) Received: (from kline@localhost) by tao.thought.org (8.8.8/8.7.3) id JAA10864; Tue, 2 Nov 1999 09:49:01 -0800 (PST) From: "Gary D. Kline" Message-Id: <199911021749.JAA10864@tao.thought.org> Subject: Re: OpenSSH patches In-Reply-To: from Dug Song at "Nov 2, 99 10:51:43 am" To: dugsong@monkey.org (Dug Song) Date: Tue, 2 Nov 1999 09:49:01 -0800 (PST) Cc: provos@citi.umich.edu, security@FreeBSD.ORG, ports@FreeBSD.ORG, markus@openbsd.org Organization: <> thought.org: public service Unix since 1986... <> X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org According to Dug Song: > On Tue, 2 Nov 1999, Niels Provos wrote: > > > One of them, already convincing enough by itself, is the free > > commercial use. > > not within the US, though. :-( > > OpenBSD's OpenSSL relies on the system libcrypto, which uses a different > RSA implementation depending on which ssl26 package you've installed. > > for US users, this is RSAREF (RSA's reference implementation), which is > only available for NON-commercial use. in order to use RSAREF (or indeed, > any implementation of RSA) commercially, you must buy an RSA license. > there is no way around this. > > any other use of the RSA algorithm within the US is in violation of the > RSA patent (though few people seem to care about this in practice - how > many illegal SSH installations are out there?). > > all software that uses RSA is subject to this bogosity, including PGP: > > http://bs.mit.edu:8001/pgp-form.html > http://www.scramdisk.clara.net/pgpfaq.html#SubRSAREF > Anybody know how much longer the RSA patent hold? Seems to me it runs out in the next few years. gary -- Gary D. Kline kline@tao.thought.org Public service Unix To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message