Date: Sun, 27 Dec 1998 16:13:37 +0100 (CET) From: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl> To: "Jordan K. Hubbard" <jkh@zippy.cdrom.com> Cc: Eivind Eklund <eivind@yes.no>, Jun-ichiro itojun Hagino <itojun@iijlab.net>, (=?ISO-2022-JP?B?GyRCMGY+ZU5JPy4bKEI=?=) <shin@nd.net.fujitsu.co.jp>, hackers@FreeBSD.ORG Subject: Re: IPv6 - when? which? Message-ID: <XFMail.981227161337.asmodai@wxs.nl> In-Reply-To: <7893.914769157@zippy.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[ re-adjust the thread to a more appropriate list if needed ] On 27-Dec-98 Jordan K. Hubbard wrote: >> http://www.wassenaar.org - limits export of crypto bigger than 56/64 bits in >> about 33 EU countries and some others (US-like export limitations). > > I'm well aware of this, but we can only hit one nail at a time. I > would expect foreign mirrors who have been "Wassenaared" to simply > exclude this portion of the mirror, just as I'm assuming they do for > the "des" subdirectory right now. We can't emasculate security for > everyone on account of this, that would be far worse. Yer right, but I was grabbing the chance to inform =) And yer right about the `we can't take responsibility for security mirroring' attitude. I was merely trying to inform of the headaches we are all going to get if we let our governments huddle along like this. Besides I'd hate to see IPv6 fail because of political crap like this (Wassenaar, US-export limitations). Sure, we are the engineers, but if we aren't going to take a point of view somewhere in time regarding these matters, then I think Clipper-chip-like practices aren't far away (big generalisation). Realise that as soon as Wassenaar is effective (is it already?) KAME might export the sources to the US or Wassenaared countries, but to continue development will be near impossible, since we cannot sync sources, except through intermediate countries and then we cannot even sync sources out of the limited countries. Talk about a frustrating development model. And besides, IPv6 without secured IPSec sucks, since mere authentication isn't that much to write home about. [ rambles on ] --- Jeroen Ruigrok van der Werven Life is the only Pain asmodai(at)wxs.nl we endeavour... Network/Security Specialist <http://home.wxs.nl/~asmodai>; BSD & picoBSD: The Power to Serve <http://www.freebsd.org>; To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.981227161337.asmodai>