> Eric Wertz wrote:
> > As far as the (re)distribution question has goes, what you "probably"
> > cannot do without permission is to redistribute the actual *package* of
> > certificates that Netscape has put together for the purpose of
> > embedding
> > in their browser. Since the overwhelming majority (if not 100%) of
IANAL, but it sounds to me like you could redistribute the package. It
does
not contain any original, creative content. It is more like a telephone
directory. It contains a list of information about entities that have a
particular status.
> Well, Netscape 6 and forward are governed with NPL/MPL/GPL (check exact
> version of the software to see which is applicable). Also Mozilla
> distributes if not identical list then pretty close, and the current
> version is under MPL 1.1/GPL 2 or later (check the files and licenses
> for actual details). LXR link:
> http://lxr.mozilla.org/seamonkey/source/security/nss/lib/ckfw/buil
> tins/certdata.txt
>
> Roland Krikava has created a Ruby script that can extract the root
> certificate list from the Mozilla/Netscape "build format" and store it
> in OpenSSL PEM format. There is also an already extracted list available
> for download. See http://curl.haxx.se/docs/caextract.html
I don't see how any anyone could assert copyright protection on such a
list. There is no original, creative effort.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
