Date: Tue, 27 Jun 2000 15:05:44 -0700 (PDT) From: Kris Kennaway <kris@FreeBSD.org> To: Will Andrews <andrews@technologist.com> Cc: "Jordan K. Hubbard" <jkh@zippy.osd.bsdi.com>, Alexander Langer <alex@big.endian.de>, Sheldon Hearn <sheldonh@uunet.co.za>, Martin Cracauer <cracauer@cons.org>, Mark Murray <markm@FreeBSD.ORG>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/sys/conf files options src/sys/i386/conf GENERIC Makefile NOTES src/sys/alpha/conf GENERIC Message-ID: <Pine.BSF.4.21.0006271503460.72062-100000@freefall.freebsd.org> In-Reply-To: <20000627175947.E29332@argon.gryphonsoft.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 27 Jun 2000, Will Andrews wrote:
> On Tue, Jun 27, 2000 at 11:31:32AM -0700, Jordan K. Hubbard wrote:
> > Don't forget - we now have export permission from the USA, so there's
> > really no such thing as "USA-only crypto" unless you're talking about
> > the rsaref port, and that's not an export issue but a patent issue.
>
> Can't we allow SSH installations by default if we set its default
> encryption algorithm to DSA, and leave some stubs in there to allow RSA?
I'm going to make ssh1 mode not exit with a fatal error if it can't find
RSA libraries and you also allow ssh2 mode. After that, we can have SSH
installed and working by default and it can grow RSA (SSH1) capabilities
post-install by dropping in the RSA libraries.
Kris
--
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <forsythe@alum.mit.edu>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0006271503460.72062-100000>