From owner-freebsd-questions@FreeBSD.ORG Sun Feb 6 17:50:57 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 119D61065670 for ; Sun, 6 Feb 2011 17:50:57 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: from oproxy3-pub.bluehost.com (oproxy3-pub.bluehost.com [69.89.21.8]) by mx1.freebsd.org (Postfix) with SMTP id D4CC88FC16 for ; Sun, 6 Feb 2011 17:50:56 +0000 (UTC) Received: (qmail 18722 invoked by uid 0); 6 Feb 2011 17:50:56 -0000 Received: from unknown (HELO box543.bluehost.com) (74.220.219.143) by oproxy3.bluehost.com with SMTP; 6 Feb 2011 17:50:56 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=apotheon.com; h=Date:From:To:Subject:Message-ID:Mail-Followup-To:References:Mime-Version:Content-Type:Content-Disposition:In-Reply-To:User-Agent:X-Identified-User; b=YqkFLHfC8ajHXvSFj9n/yEnICKrFcMj4A6qk3inAHGhiNBuq2HdCSa1JNfusjAcLA/OotlWYhGk06usgm11TiIdSQt8DC9mvAozfqK4IqLZnR2HBIEZ7UKBRS41DZLQi; Received: from c-24-8-180-234.hsd1.co.comcast.net ([24.8.180.234] helo=kukaburra.hydra) by box543.bluehost.com with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from ) id 1Pm8lD-0007Hk-1o for freebsd-questions@freebsd.org; Sun, 06 Feb 2011 10:50:56 -0700 Received: by kukaburra.hydra (sSMTP sendmail emulation); Sun, 06 Feb 2011 10:40:57 -0700 Date: Sun, 6 Feb 2011 10:40:57 -0700 From: Chad Perrin To: FreeBSD Message-ID: <20110206174057.GA22368@guilt.hydra> Mail-Followup-To: FreeBSD References: <12dfaeab98c.2320661712861783787.-8492260798816855817@zoho.com> <20110206084227.639b10af.wmoran@potentialtech.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="PNTmBPCT7hxwcZjr" Content-Disposition: inline In-Reply-To: <20110206084227.639b10af.wmoran@potentialtech.com> User-Agent: Mutt/1.4.2.3i X-Identified-User: {2737:box543.bluehost.com:apotheon:apotheon.org} {sentby:smtp auth 24.8.180.234 authed with ren@apotheon.org} Subject: Re: OpenSSH could be faster...then why don't they path it?? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Feb 2011 17:50:57 -0000 --PNTmBPCT7hxwcZjr Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Feb 06, 2011 at 08:42:27AM -0500, Bill Moran wrote: >=20 > Also, I'm having trouble understanding how people like that get grants > to do work like that. On the one hand, they obviously know enough about > cryptography to make improvements. On the other hand, they can't seem > to get a grip on the fact that the code will need to have a license > before anyone can grab it and incorporate it. I can't find anywhere on > that page where it tells me what terms I am allowed to use those patches > under. A lack of concern for specific licensing seems to be a big problem in the open source world -- particularly the copyleft world. Many people seem to think that if they say "open source" it means "GPL", and they don't have to tell anyone they're releasing it under the terms of the GPL. The license ends up buried under some second-order subdirectory in a tarball that isn't the supposedly preferred means of getting the software in question. Occasionally, the same kind of lack of concern is employed with distributing something under some other open source license, and occasionally an announcement that something is open source comes with the author's assumption that no license is needed at all. It drives me up the wall. >=20 > Also, it would be nice if those folks kept track of dates. Like, how long > have those patches be available? There's not a single date on any of > those pages or the files involved. The reason I point this out is because > OpenSSL is _extremely_ sensitive software. I don't want to see any > large changes to it released until they've been in testing for months, > if not years. For all we know, these speed improvements are riddled with > dozens of security flaws. I agree that dates are important, too. These days, there is little or no execuse for offering open source software to the world without storing it in a publicly accessible version control system's repository, which will automatically track commit dates for everything anyway. >=20 > Also, any reason why you're asking these questions of FreeBSD and not of > the OpenSSL project? I think we're discussing OpenSSH rather than OpenSSL. Am I mistaken? They are not the same project. --=20 Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] --PNTmBPCT7hxwcZjr Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk1O3SkACgkQ9mn/Pj01uKXUqQCg6ngqieVelRNjBZeeJ4gMTenY Zf0An16Z/oJs4xF6sBq2112Ya5EcpuTL =xAYQ -----END PGP SIGNATURE----- --PNTmBPCT7hxwcZjr--