On Fri, 7 Jul 2000, Jeffry Smith wrote:
>> I thought that, at this point, all of the issues with the RSA pattents had
>> been resolved by introduction of SSH V2 support?
>
> While V2 supports more protocals, RSA claims patent protection over
> all public-private key algorithms.
Hmmm. According to http://www.openssh.com/goals.html:
> [SSH] Protocol 2 was invented to avoid the patent issues regarding RSA,
> and to fix the CRC data integrity problem that SSH1 has. By using the
> asymmetric DSA and DH algorithms, protocol 2 avoids all patents.
Not that I really care much about RSA's patent, but this made me feel better
when I upgraded to OpenSSH V2. Now I'm feeling confused.
On Fri, 7 Jul 2000, Jeffry Smith wrote:
> The good news is the patent expires in Sep.
Yes. And there was much rejoicing. ;-)
On Fri, 7 Jul 2000, Derek Martin wrote:
> The issues are not with patents but with the fact that US sites often
> compile against RSARef which has buffer overflow problems.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
I didn't know that. Wonderful. Something *else* to worry about.
How can I tell if the version I downloaded is linked against RSARef, as
opposed to some other implementation?
--
Ben Scott <[EMAIL PROTECTED]>
Net Technologies, Inc. <http://www.ntisys.com>
Voice: (800)905-3049 x18 Fax: (978)499-7839
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
