Welcome to the wonderful world of patents. As I understand it, RSA only
grants licenses for the patent if the licensee uses their BSAFE product
(or some other pre-created library, that they provide) for what they're
using RSA for. So, no, you're not allowed to apply the RSA patent
license, because you're not using their (hideously expensive) software
library with mod_ssl.
It would make the most sense (given this absolutely preposterous state of
affairs), at least in my eyes, to run two separate httpds in two separate
directories -- the one httpd the insecure one with the latest apache, the
other httpd the secure one from RedHat's Secure Web Server.
(I cannot WAIT for September 20th to roll around... the patent issue goes
byebye.)
Note: Congratulations on thinking to ask about it; most people wouldn't.
However, it's possible that their use of the words, "make it secure"
refers only to 'ensure that our pages cannot be defaced', which is a
different problem from 'ensure that our clients' information cannot be
intercepted on the backbone'.
---
Mat Butler, Winged Wolf <[EMAIL PROTECTED]>
SPASTIC Web Engineer SPASTIC Server Administrator
On Fri, 23 Jun 2000, keiths wrote:
> I have just spent a day adding in support for SSL via mod-ssl to my
> apache server. I am new to all this stuff and have just been told -
> "make it secure" - and it seemed to me this is the logical way to go.
> We purchased a Red Hat Linux Pro software, including the "Secure Web
> Server", and when I initially installed it a few months ago I had
> problems with it and jserv. Security was not an issue at that time, so
> I picked up fresh 3.1.9 apache source, and fresh jserv source which
> worked pretty much without a hitch.
>
> Now I apply the same approach to doing a DSO for SSL, and get it going
> and then discover that there are legal issues. Browsing through some of
> your archives, it seems that it might be reasonable to use the license
> for the outofthebox red hat SWS for the mod-ssl. Have I gotten the
> wrong message, or will I have to go back to the outofthebox stuff.
>
> Many thanks in advance, and hope that I can become a "real" subscriber
> soon, if not after Sept 20th.
>
> --
> Keith Simpson
> Skillview Technologies
> [EMAIL PROTECTED]
> (603)-382-9882
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
