On Mon, 2008-03-31 at 20:34 +0200, Michael Biebl wrote: > 2008/3/31, Rainer Gerhards <[EMAIL PROTECTED]>: > > Oh, excellent feedback. And I thought that openssl is the workhorse of os > > tls - wrong preception obviously ;) > > > > Can you point me to the problem description? What would i need to exempt? > > Google for "openssl gpl" and you should find relevant information. > E.g. [1] tries to summarize the problem. > It also has a proposal for such a OpensSSL exemption. You should add > this addendum to COPYING and probably also ship the original OpenSSL > COPYING file (e.g. as COPYING.OpenSSL) > > > > > Is any of the alternates suitable for production use, especially in a > > highly threaded environment? GNU, from the name, sounds appealing... > > > A prominent example of a project using GnuTLS is e.g. samba (if it's > highly threaded, I don't know). OpenLDAP in Debian also uses GnuTLS. > A prominent example of a project using NSS is mozilla/firefox/thunderbird. > > I think the more widely used library is GnuTLS. I really don't have > that much experience with either of these libraries, so it's hard to > give a recommendation. >
the library that a lot of folks inside red hat and fedora are driving people to is the mozilla nss library. It handles all the bits openssl does and w/o the licensing problems. -sv _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog
