From owner-freebsd-ports Fri Nov 14 09:19:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA14796 for ports-outgoing; Fri, 14 Nov 1997 09:19:16 -0800 (PST) (envelope-from owner-freebsd-ports) Received: from ns.frihet.com (frihet.bayarea.net [205.219.92.1]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id JAA14786 for ; Fri, 14 Nov 1997 09:19:11 -0800 (PST) (envelope-from tweten@ns.frihet.com) Received: from ns.frihet.com (LOCALHOST [127.0.0.1]) by ns.frihet.com (8.8.7/8.8.7) with ESMTP id JAA07962; Fri, 14 Nov 1997 09:18:35 -0800 (PST) (envelope-from tweten@ns.frihet.com) Message-Id: <199711141718.JAA07962@ns.frihet.com> X-Mailer: exmh version 2.0zeta 7/24/97 Reply-To: "David E. Tweten" To: Narvi cc: freebsd-ports@FreeBSD.ORG Subject: Re: PGP Key Size Limitation in Ports Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 14 Nov 1997 09:18:34 -0800 From: "David E. Tweten" Sender: owner-freebsd-ports@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Initially quoting me, narvi@haldjas.folklore.ee said: >> Why does Ports build domestic PGP 2.6.2 to use the less capable rsaref, >> when the more capable modified version is shipped with the other source >> from MIT? >Because the only RSA encryption you can use inside US comes from RSA. >It is *illegal* for you to use any other lib than the one you get >from RSA. Not true. MIT gained RSADSI permission to use RSAREF _with modifications_ in its release of PGP. Nobody else has that permission, and therefore can't modify rsaref for larger keys. It makes no sense to me to strip out the non-patent-infringing modified rsaref from MIT PGP 2.6.2 and substitute the less capable unmodified form. My question stands. -- David E. Tweten | 2047-bit PGP fingerprint: | tweten@frihet.com 12141 Atrium Drive | E9 59 E7 5C 6B 88 B8 90 | tweten@and.com Saratoga, CA 95070-3162 | 65 30 2A A4 A0 BC 49 AE | (408) 446-4131 Those who make good products sell products; those who don't, sell solutions.