Re: [HACKERS] RE: [INTERFACES] Re: SSL patch

At 01:37 27/07/99 +0300, Hannu Krosing wrote:
>Philip Warner wrote:
>> 
>> At 06:24 26/07/99 -0400, D'Arcy" "J.M." Cain wrote:
>> >Thus spake Hannu Krosing
>> >> Not to scare anyone away (I like crypto !;), but isn't it illegal to
>> >> have SSL
>> >> in an exportable product in US.
>> >>
>> >> I guess this should be kept in a separate patch distributed from an
>> >> non-US site
>> >> until US government wisens up.
>> >
>> >The PostgreSQL server is in Canada.  There may still be some issues but
>> >last time I checked we weren't a US state yet.
>
>Good to hear, I was afraid of them being more or less the same
>crypto-wise.
>
>> Even if there are problems, I believe it's OK to export PostgreSQL with
>> options for SSL support, so long as you don't export SSL.
>
>Let's hope so. In US that would be a 'crypto hook' and legally as bad as 
>real crypto.

That's a worry - maybe it would be worth looking at the approach of Apache.
They have a general 'module' concept, and one of the available modules adds
SSL. Both mod_ssl, and opensll are available overseas.

Perhaps the same idea could be used in PosgreSQL?


----------------------------------------------------------------
Philip Warner                    |     __---_____
Albatross Consulting Pty. Ltd.   |----/       -  \
(A.C.N. 008 659 498)             |          /(@)   ______---_
Tel: +61-03-5367 7422            |                 _________  \
Fax: +61-03-5367 7430            |                 ___________ |
Http://www.rhyme.com.au          |                /           \|                                |    --________--
PGP key available upon request,  |  /
and from pgp5.ai.mit.edu:11371   |/