[767] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] SSL

daemon@ATHENA.MIT.EDU (Rob J. Nauta)
Mon Jun 10 14:40:06 1996

From: "Rob J. Nauta" <rob@redwood.nl>
To: iialan@iifeak.swan.ac.uk
Date: Fri, 07 Jun 1996 14:49:39 METDST
Cc: linux-security@tarsier.cv.nrao.edu, linux-security@nrao.edu
In-Reply-To: <m0uRbNb-0009fEC@iifeak.swan.ac.uk>; from "Alan Cox" at Jun 6, 96 10:29 am

> 
> > One thing that seems to bother me is that in the telnet daemon, it won't 
> > ask for the login name if the client and daemon have authentication. I 
> > guess this is a "feature", it would be a lot nicer if it used the keys 
> > and the password with kerberos encryption. I think this would probably 
> > fix the problem of packet sniffing of the passwords while login.
> 
> ssh is a slightly different tool but has these features. US citizens can
> get it from finland but do need to read the documentation to disable certain
> items before their Government will allow them to use it (patent hooha
> as usual)

Just a small reminder: the government enforces ITAR, the export
regulations. That's why you cannot export encryption technology
outside of the USA.
SSH however requires USA citizens to use RSAref, the official RSA
library. This has to do with the fact that RSA is a patented
algorithm in the USA. Patent violations are usually a matter for
civil court and lawsuits, not criminal law. Thus the phrase 'before
their Government will allow them to use it' is incorrect - if you
get into trouble, you won't get arrested by the government, you'll
get sued by the owners of the RSA patents (is that PKP ?).

Rob

--
~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~
   Rob J. Nauta					rob@redwood.nl

home help back first fref pref prev next nref lref last post