Re: [HACKERS] RE: [INTERFACES] Re: SSL patch

At 01:37 27/07/99 +0300, Hannu Krosing wrote:
>Philip Warner wrote:
>>
>> At 06:24 26/07/99 -0400, D'Arcy" "J.M." Cain wrote:
>> >Thus spake Hannu Krosing
>> >> Not to scare anyone away (I like crypto !;), but isn't it illegal to
>> >> have SSL
>> >> in an exportable product in US.
>> >>
>> >> I guess this should be kept in a separate patch distributed from an
>> >> non-US site
>> >> until US government wisens up.
>> >
>> >The PostgreSQL server is in Canada. There may still be some issues but
>> >last time I checked we weren't a US state yet.
>
>Good to hear, I was afraid of them being more or less the same
>crypto-wise.
>
>> Even if there are problems, I believe it's OK to export PostgreSQL with
>> options for SSL support, so long as you don't export SSL.
>
>Let's hope so. In US that would be a 'crypto hook' and legally as bad as
>real crypto.

That's a worry - maybe it would be worth looking at the approach of Apache.
They have a general 'module' concept, and one of the available modules adds
SSL. Both mod_ssl, and opensll are available overseas.

Perhaps the same idea could be used in PosgreSQL?

----------------------------------------------------------------
Philip Warner | __---_____
Albatross Consulting Pty. Ltd. |----/ - \
(A.C.N. 008 659 498) | /(@) ______---_
Tel: +61-03-5367 7422 | _________ \
Fax: +61-03-5367 7430 | ___________ |
Http://www.rhyme.com.au | / \|
| --________--
PGP key available upon request, | /
and from pgp5.ai.mit.edu:11371 |/