dear friends,
i have a feeling Brad is right too, did some research and you can check out
the FAQ on the Apache-SSL website - if we use the SSLEAY libraries and
disable the RSA encryption methods it is usable without any legal issues.
also since the client would be ours we can define the encryption methods to
use.
bhavin
> > Yeah, we would have loved to stay with more "standards-based"
> > encryption... after all, SSL and SSH have been scrutinized for a
> > long time and have had most, if not all bugs worked out. But SSL
> > carries with it a lot of start-up time which is critical when
> > authenticating as often as we do. And both of those have licensing
> > issues which we have been able to avoid on the resellers' behalf.
>
> I may be wrong, but using either OpenSSL or OpenSSH with a non-RSA
> encryption scheme should be legal. Niether piece of software has
> any sort of restrictions, but I know RSA has patents on some of the
> encryption schemes here in the U.S.
This archive was generated by hypermail 2.1.3 : Tue Oct 19 2004 - 23:35:14 EDT