On Sat Jan 12, 2002 at 11:00:14PM -0800, SI Reasoning wrote: > This may be a problem if a distro has to dumb down > their security based on their host country's > individual policies. I don't feel comfortable with > dumbed down security just because of French Laws.
Unfortunately, according to the law, there isn't much we can do about it, unless we do the crypto mirror thing again. However, since rpm is a little more advanced, it should be simplicity to add a --with fullcipher (or whatever) switch to allow us to rebuild it with full strength crypto. That wouldn't be illegal. I'm sure that MandrakeSoft doesn't feel comfortable violating French laws either, and since we are likely to get sued if we do break the law, the better scenario is to obey the law even if it stinks. That said, there are always ways to get around things, and making a conditional rebuild switch is one of them (the crypto mirrors are another). -- MandrakeSoft Security, OpenPGP key available on www.keyserver.net 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD Current Linux kernel 2.4.8-34.1mdk uptime: 3 days 1 hour 49 minutes.
msg51055/pgp00000.pgp
Description: PGP signature
