Hi
I have one little problem. I want to ship one product to the market that has
apache with mod_ssl and openssl.
My problem is USA Patents.
I'm building openssl with option no-rsa. this is supposed to remove rsa code
from openssl and now i can use mod_ssl in a valid form inside usa without
wondering about rsa patents.
I know rsa cryptocode is only to encrypt the certificate, so i think is
better to use mod_ssl without rsa than plain html requests.
And i can ship a new online update in september 20 with rsa code inside.
but i still have the problem of idea and RC5 and i want to know if there is
any problem with them inside USA.
The fact that i'm not selling only providing the product take me to the idea
of use RSARef in my product and tell the user that if they want to use for
commercial proposes they need to pay a license of bsafe to RSA (or buy some
from covalent or redhat).
But RSA tell me that i will still inflicting the law (i don't know how maybe
some one can help me in this respect).
Is supposed that if i use openssl without rsa code some browsers are now
going to be able of connect to the server. but i have tested with netscape
and opera ant they work.
I'm trying to use ravenssl from covalent in my product but (using my version
of apache build against mod_ssl. but i when some one connects to the server it
appears to work until the page is requested the apache child segfaults.
I think i need to get my patched version of apache with mod_ssl and create a
modified version of apache with ravenssl and the generate a diff file to be
able of create bout shared objects. but i haven't tested that yet. If this
works. i can have the choice of put ravenssl or mod_ssl in the same apache
binary. but i prefer not to pay covalent for ravenssl so maybe is better only
use apache and mod ssl.
(i can not pay for licenses of bsafe inside my product because rsa want me to
pay some think like 90,000!
--
Luis E Limon
[EMAIL PROTECTED]
Senior SoftWare Developer
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
