I don't have any particular plans to implement it myself, and
writing my own crypto protocol makes me Very Very Nervous. And SSL
and SSH libraries seem to be uniformly horrid.
I haven't looked at any SSH ones, but OpenSSL doesn't seem too
horrible---I'd guess it's not much more horrible than is necessary.
(It compares fairly reasonably in usability with a commercial one I
used from Baltimore, for example.)
There is also the NSS library:
http://www.mozilla.org/projects/security/pki/nss/.
This is triple licensed under MPL, GPL, and LGPL, and supports SSLv2,
SSLv3, TLS, X.509v3, and so on. I do not know if the library is better
or worse than the OpenSSL library.
_______________________________________________
Monotone-devel mailing list
[email protected]
http://lists.nongnu.org/mailman/listinfo/monotone-devel
