From owner-freebsd-security Wed Jul 26 11:28:51 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.11/8.6.6) id LAA05983 for security-outgoing; Wed, 26 Jul 1995 11:28:51 -0700 Received: from gndrsh.aac.dev.com (gndrsh.aac.dev.com [198.145.92.241]) by freefall.cdrom.com (8.6.11/8.6.6) with ESMTP id LAA05967 for ; Wed, 26 Jul 1995 11:28:48 -0700 Received: (from rgrimes@localhost) by gndrsh.aac.dev.com (8.6.11/8.6.9) id LAA26057; Wed, 26 Jul 1995 11:28:33 -0700 From: "Rodney W. Grimes" Message-Id: <199507261828.LAA26057@gndrsh.aac.dev.com> Subject: Re: secure/ changes... To: trost@cloud.rain.com (Bill Trost) Date: Wed, 26 Jul 1995 11:28:33 -0700 (PDT) Cc: security@freebsd.org In-Reply-To: from "Bill Trost" at Jul 26, 95 09:32:39 am X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Content-Length: 1130 Sender: security-owner@freebsd.org Precedence: bulk > > Part of what may be causing people to worry about importing encryption > software is that some of it is illegal to *use* (and probably import) > in the United States. In particular, the international versions of > PGP contain their own implementation of RSA, so any use of those > versions of PGP are violations of PKP's patents on the algorithm. And thus importaton of ``PGP'' is restricted by ``local, state or federal law'', and thus my assertion holds true, it is illegal to import PGP, not for the reason I sited, but none the less still illegal. It is illegal to import anything you can not legally posses(sp). > Keep this in mind when planning what software to import. Both RSA and > Diffie-Hell?man are covered by patents (although the latter expires in > 1997). In general, though, keeping sources for secure software > outside the United States is an *excellent* idea. After all, if you > comparison shop for stereos, why not governments as well? :-) -- Rod Grimes rgrimes@gndrsh.aac.dev.com Accurate Automation Company Reliable computers for FreeBSD