From owner-freebsd-current Mon Dec 16 08:15:06 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id IAA14856 for current-outgoing; Mon, 16 Dec 1996 08:15:06 -0800 (PST) Received: from grackle.grondar.za (TwPE4gNmGruBb9JRk/3uAWYLP8WVhf+9@grackle.grondar.za [196.7.18.131]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id IAA14841 for ; Mon, 16 Dec 1996 08:14:59 -0800 (PST) Received: from grackle.grondar.za (SUcxkdBlIF+gKr0qZLll9VsxjJYBSW5Z@localhost [127.0.0.1]) by grackle.grondar.za (8.8.4/8.8.4) with ESMTP id SAA22536; Mon, 16 Dec 1996 18:12:58 +0200 (SAT) Message-Id: <199612161612.SAA22536@grackle.grondar.za> To: Paul Richards cc: Bill Paul , terry@lambert.org (Terry Lambert), current@FreeBSD.ORG Subject: Re: Plan for integrating Secure RPC -- comments wanted Date: Mon, 16 Dec 1996 18:12:56 +0200 From: Mark Murray Sender: owner-current@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Paul Richards wrote: > I had a discussion with someone in the Perl group who was from ORA. He > claimed FreeBSD was being overly restrictive in it's lack of DES > code. He cited NetBSD and 4.4 claiming that both were exportable > because the DES code was only being used for authentication and not > encryption. I'm wondering if there may be some confusion at ORA due to > the fact that 4.4 has a unidirectional DES based hashing function > (which I was not aware of). I'm not sure that would be exportable > anyway, isn't it still encryption technology even if it's not used as > such. I suspect that the CD you have is exactly what is being exported > since this person stated that was what they were in fact doing. There are _two_ things called `DES': 1) contents of libdescrypt AKA libcrypt, which is the one-way hash. (AKA crypt() (3)) 2) contents of libdes. 2-way stuff. DEFINITELY unexportable. M -- Mark Murray PGP key fingerprint = 80 36 6E 40 83 D6 8A 36 This .sig is umop ap!sdn. BC 06 EA 0E 7A F2 CE CE