Date: Fri, 13 Aug 1999 11:34:10 -0700 From: Nick Sayer <nsayer@quack.kfu.com> To: Narvi <narvi@haldjas.folklore.ee> Cc: freebsd-hackers@freebsd.org Subject: Re: SRA+IDEA Telnet Message-ID: <37B46522.2AB2A956@quack.kfu.com> References: <Pine.BSF.3.96.990813202306.19879A-100000@haldjas.folklore.ee>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --]
Narvi wrote:
>
> How exactly do you plan to get this to the FreeBSD internationsl
> server that has the crypto repository?
The short answer is that I don't.
Unfortunately the trick that PGP used of publishing it in a book and
exporting
that won't work anymore, because I believe the commerce department now
says that source code printed in a book that can be scanned and OCRed
is,
in fact, "machine readable" and unexportable.
I originally obtained SRA code from a University in Germany. I obtained
my implementation of IDEA from PGP. In fact, I used idea.[ch] and #if
0'ed
out stuff that's not needed. However, SRA is perfectly able to supply a
compatable DES encryption key, so you can just add SRA to telnet and
have SRA+DES. In fact, given that SRA isn't all that hard to break,
one could argue that DES probably good enough (I hear it now -- if
SRA isn't that hard to break, why bother? Answer: Because it's harder
to break than plaintext. Factoring SRA would take a few days. Just
watching for login: and password: takes nothing).
I obtained the Makefiles for libtelnet, telnetd and telnet from the
/usr/src/secure Attic and modified them so that they would enable
encryption,
authentication, SRA and DES (after adding SRA code, of course).
I can discuss what I did with non-US citizens only in broad terms like
the
above. I can't assist and I can't provide source.
The good news is that I believe the Bernstein case is headed finally for
the Supreme Court and if all goes well source code may well be exempted
from export regulations by deeming it protected speech.
[-- Attachment #2 --]
0
*H
0
1
0 +�0
*H
300f=ޅG
0
*H
�010U
VeriSign, Inc.1 0
U
VeriSign Trust Network1F0DU
=www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)981H0FU?VeriSign Class 1 CA Individual Subscriber-Persona Not Validated0
990621000000Z
000620235959Z010U
VeriSign, Inc.1 0
U
VeriSign Trust Network1F0DU
=www.verisign.com/repository/RPA Incorp. by Ref.,LIAB.LTD(c)981
0
U
Persona Not Validated1301U
*Digital ID Class 1 - Netscape Full Service10UNicholas W. Sayer1#0! *H
nsayer@quack.kfu.com00
*H
��0� uSDp0<ԒQ
XQ\A3
wҒcvSp
皞X@1Q
j>Dس9M']ٻF\Bв
:{ 8
cıPl
o�00 U
0�0U
00
`HE00(+
https://www.verisign.com/CPS0b+0V0VeriSign, Inc.0=VeriSign's CPS incorp. by reference liab. ltd. (c)97 VeriSign0 `HB0
`HExvd4652bd63f2047029298763c9d2f275069c7359bed1b059da75bc4bc9701747da5d3f2141beac23ec2fd820bab6df5d711499fa1bc44f5f3ea450c03U
,0*0(&$"http://crl.verisign.com/class1.crl0
*H
��PʿC79ەCɓgJgvbyN9.KLwAh~)]fV5O,c=r͈jO9YQ @*81x0smr0.0�v.
=}%]
u0
*H
�0_1
0 UUS10U
VeriSign, Inc.1705U
.Class 1 Public Primary Certification Authority0
980512000000Z
080512235959Z010U
VeriSign, Inc.1 0
U
VeriSign Trust Network1F0DU
=www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)981H0FU?VeriSign Class 1 CA Individual Subscriber-Persona Not Validated00
*H
��0�ZDUz-Ox6
JoTw*h1ApzKHV-BD\B/;'
]6B3nTOJ
ƚj$e~7jJ �|0z0 `HB0GU
@0>0<
`HE0-0++ www.verisign.com/repository/RPA0U
0�0
U
0
*H
��7;ڔ7�q
jm/d8
[jI}g-,ݚB>
V*3ǾSLýIBc¦]XI<\Ue � _Xj<n1<080010U
VeriSign, Inc.1 0
U
VeriSign Trust Network1F0DU
=www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)981H0FU?VeriSign Class 1 CA Individual Subscriber-Persona Not Validated=ޅG
0 +�0 *H
1
*H
0
*H
1
990813183412Z0# *H
1W7ڡ43oڶs0R *H
1E0C0
*H
0*H
�0+0
*H
@0
*H
(0
*H
�#V%X2cC؉X]/Q*eL;D]>f_M]b'9v
> ?ں՚N<$]"|zIo-8$+)9V
E
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37B46522.2AB2A956>