I just read openssl/READM, and noted this little paragraph:
For people in the USA, it is possible to compile SSLeay to use RSA Inc.'s
public key library, RSAref. From my understanding, it is claimed by RSA Inc.
to be illegal to use my public key routines inside the USA. Read
doc/rsaref.doc on how to build with RSAref.
There's one little problem with that, as far as I've been told by
folks in the states, and it's that RSAref doesn't have anything
corresponding to RSA_NO_PADDING, making it difficult to use when you
don't want any padding (this is the case, apparently, with SSH, and
thusly with any SSH client or server that is built around libcrypto.a).
It may be worth saying this as well in README, so people don't need to
search for weird bugs or whatever they might run into. It is sad that
americans are forced to break their laws this way, but...
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Vice Chairman and \ S-161 43 BROMMA \ T: +46-8-26 52 47
Redakteur @ Stacken \ SWEDEN \ or +46-708-26 53 44
Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED]
Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
