Rich Salz wrote:
>
> > ??? Crypto export was once legal, surely? If we go back far enough, that
> > is.
>
> Sure. And if you could travel back in time, you could export.
>
> If you did something at time t0 that was legal, and the law was changed at t1
> to make it illegal, then you're okay. At t1, you cannot make a law that says
> "as of 3 days ago, this is illegal."
As I keep saying, this is not my concern, it is the potential
restriction on _future_ use of OpenSSL by U.S. citizens that concerns
me.
> > Anyway, in the case of the current regs, IIRC (which I think I do), they
> > _explicitly_ reserve the right to make future restrictions on exported
> > code. I know that opinion mostly says that that would be, in practice,
> > impossible, but...
>
> More than impossible, really, against the US constitution.
Please support that claim (saying that the consitution prevents past
acts from being made illegal does not support it).
> > I'm happy to have a second opinion, though it isn't clear to me what the
> > value of an opinion from a firm that has a vested interest in that
> > opinion is.
>
> Then again I ask, what *would* it take? Who *would* you folks listen to?
We _have_ listened to Cindy Cohn. She supports my views. I am in the
process of getting even more comprehensive advice from her for the ASF.
Regrettably, it still looks like we have a problem.
Like I say, I'd be happy to hear what Intel have to say, I'm just not
entirely clear what the value of that opinion would be if it radically
disagrees with other advice, but let's hear it before we go off
half-cocked.
BTW, let's be really clear here - I agree that this is all really
unlikely, but I also think that OpenSSL is too valuable to risk in this
way.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
Coming to ApacheCon Europe 2000? http://apachecon.com/
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
