Maybe LibreSSL will turn out to be a better choice than OpenSSL in the future, but keep in mind that this fork of OpenSSL was made for practical reasons, to make the codebase cleaner so that bugs like Heartbleed can be spotted more easily:

> LibreSSL is a version of the TLS/crypto stack forked from
> OpenSSL in 2014, with goals of modernizing the codebase,
> improving security, and applying best practice development
> processes.

In any case, there's nothing ethically wrong with OpenSSL. GnuTLS was developed because OpenSSL's license causes practical problems,[1] particularly an incompatibility with the GNU GPL. LibreSSL, incidentally, isn't going to be able to fix this.

[1] https://gnu.org/licenses/license-list.html#OpenSSL

Reply via email to