On Friday 23 March 2007 21:31, Norm Donovan wrote:
> One more question. Couldn't the authors of OpenSSL release a version of
> their code under GPL2? Have they refused to do this? It would
> certainly be easier to change one OpenSSL license than the licenses of
> hundreds of programs that use it.
I am pretty sure the OpenSSL guys do not want this. There is an
explicit mentioning of incompatibiliy with GPL. Many other products
have had the same problem discussed.
> Assuming they will not do this then I agree would make sense to replace
> OpenSSL.
I fear so, but I see it also as a chance to review the code for secure
connections carefully.
> Does the lack of FIPS certification cause any problems?
I leave this question to the US guys. AFAIKT, this does not concern
europe.
Best
Jan
--
Dr. Jan-Oliver Wagner Intevation GmbH, Osnabrück
Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-devel mailing list
Openvas-devel@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
