From owner-freebsd-security  Thu Dec 16 12:24:10 1999
Delivered-To: freebsd-security@freebsd.org
Received: from overcee.netplex.com.au (overcee.netplex.com.au [202.12.86.7])
	by hub.freebsd.org (Postfix) with ESMTP
	id 4FB25155EF; Thu, 16 Dec 1999 12:24:08 -0800 (PST)
	(envelope-from peter@netplex.com.au)
Received: from netplex.com.au (localhost [127.0.0.1])
	by overcee.netplex.com.au (Postfix) with ESMTP
	id 92CBA1CC6; Fri, 17 Dec 1999 04:24:04 +0800 (WST)
	(envelope-from peter@netplex.com.au)
X-Mailer: exmh version 2.1.1 10/15/1999
To: Brian Fundakowski Feldman <green@FreeBSD.org>
Cc: Mark Murray <mark@grondar.za>,
	Kris Kennaway <kris@hub.freebsd.org>, security@FreeBSD.org
Subject: Re: OpenSSH in the base (was Re: OpenSSL update) 
In-Reply-To: Message from Brian Fundakowski Feldman <green@FreeBSD.org> 
   of "Wed, 15 Dec 1999 22:37:37 EST." <Pine.BSF.4.10.9912152236481.938-100000@green.dyndns.org> 
Date: Fri, 17 Dec 1999 04:24:04 +0800
From: Peter Wemm <peter@netplex.com.au>
Message-Id: <19991216202404.92CBA1CC6@overcee.netplex.com.au>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Brian Fundakowski Feldman wrote:
> On Wed, 15 Dec 1999, Mark Murray wrote:
> 
> > > Sounds great.  I hope this means I get to import OpenSSH!
> > 
> > Hell, yes!
> > 
> > I reckon it may be better to let me do it; that way I can get
> > Internat and Freefall synchronised.
> 
> We should discuss this and its ramifications on -security.  I'll move
> this there :)

It's not a crypto export problem, it's the RSA patent that's the problem.
Any code that isn't RSAREF based for RSA support is unusable in the US.  I
don't think OpenSSL linked against RSAREF is useable for OpenSSH.

Cheers,
-Peter




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message