From owner-cvs-all Tue Jun 27 15: 5:49 2000 Delivered-To: cvs-all@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 2257237BE8A; Tue, 27 Jun 2000 15:05:45 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id PAA73527; Tue, 27 Jun 2000 15:05:45 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Tue, 27 Jun 2000 15:05:44 -0700 (PDT) From: Kris Kennaway To: Will Andrews Cc: "Jordan K. Hubbard" , Alexander Langer , Sheldon Hearn , Martin Cracauer , Mark Murray , cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/sys/conf files options src/sys/i386/conf GENERIC Makefile NOTES src/sys/alpha/conf GENERIC In-Reply-To: <20000627175947.E29332@argon.gryphonsoft.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 27 Jun 2000, Will Andrews wrote: > On Tue, Jun 27, 2000 at 11:31:32AM -0700, Jordan K. Hubbard wrote: > > Don't forget - we now have export permission from the USA, so there's > > really no such thing as "USA-only crypto" unless you're talking about > > the rsaref port, and that's not an export issue but a patent issue. > > Can't we allow SSH installations by default if we set its default > encryption algorithm to DSA, and leave some stubs in there to allow RSA? I'm going to make ssh1 mode not exit with a fatal error if it can't find RSA libraries and you also allow ssh2 mode. After that, we can have SSH installed and working by default and it can grow RSA (SSH1) capabilities post-install by dropping in the RSA libraries. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message