From owner-freebsd-security Wed Jul 26 09:55:51 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.11/8.6.6) id JAA27941 for security-outgoing; Wed, 26 Jul 1995 09:55:51 -0700 Received: from kithrup.com (kithrup.com [140.174.23.40]) by freefall.cdrom.com (8.6.11/8.6.6) with ESMTP id JAA27933 for ; Wed, 26 Jul 1995 09:55:50 -0700 Received: (from sef@localhost) by kithrup.com (8.6.8/8.6.6) id JAA02598; Wed, 26 Jul 1995 09:55:43 -0700 Date: Wed, 26 Jul 1995 09:55:43 -0700 From: Sean Eric Fagan Message-Id: <199507261655.JAA02598@kithrup.com> To: trost@cloud.rain.com Subject: Re: secure/ changes... Newsgroups: kithrup.freebsd.security In-Reply-To: References: Your message of Wed, 26 Jul 1995 04:07:18 PDT. <199507261107.EAA08554@tale.frihet.com> Organization: Kithrup Enterprises, Ltd. Cc: security@freebsd.org Sender: security-owner@freebsd.org Precedence: bulk In article you write: >Part of what may be causing people to worry about importing encryption >software is that some of it is illegal to *use* (and probably import) >in the United States. In particular, the international versions of >PGP contain their own implementation of RSA, so any use of those >versions of PGP are violations of PKP's patents on the algorithm. That is a civil issue, not a criminal issue. (Meaning, it's not illegal, the most it would due is land you in a patent-infringement suit.) It is not infringement to have the code, nor to distribute it. It is infringement to use it. (It can also be considered infringement to distribute it with the knowledge and intent that it be used, but that's a derivation of infringement, if I understand correctly and nobody minds me using a bit of mathematical metaphor ;).) It is in no way illegal or infringement to simply import it.