Re: your mail

Jon Lewis (jlewis@inorganic5.fdt.net)
Sat, 7 Sep 1996 00:33:18 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jon Lewis: "Re: Pricing"
Previous message: Jon Lewis: "Re: Preventing Dial-ins ??"
In reply to: Christopher Oliver: "Re: You want pricing?"
Next in thread: Christopher Oliver: "Re: You want pricing?"

On Fri, 6 Sep 1996, Christopher Oliver wrote:

> How did you resolve the patent issues regarding the crypto-technology
> in SSH? We'd certainly LIKE to use it.

Which ones? In the COPYING file, the license says:
...
Use by individuals and non-profit organizations is always allowed.
Companies are permitted to use this program as long as it is not used for
revenue-generating purposes. For example, an Internet service provider is
allowed to install this program on their systems and permit clients to use
SSH to connect; however, actively distributing SSH to clients for the
purpose of providing added value requires separate licensing. Similarly,
a consultant may freely install this software on a client's machine for
his own use, but if he/she sells the client a system that uses SSH as a
component, a separate license is required. If a company includes this
program or a derivative work thereof, as part of its product, commercial
licensing is required.
...

In INSTALL:
...
COMPILING WITHOUT IDEA

The IDEA cipher can be freely used for non-commercial use. However,
commercial use may require a license in a number of countries.

Ssh can be compiled without IDEA by using the --without-idea configure
option. This disables IDEA, and causes 3DES to be used for encrypting
key/identity files and as the default session cipher. (The default
session cipher can be changed by editing SSH_FALLBACK_CIPHER in
ssh.h.)
...

Rather than even look into this, I chose to compile without IDEA. I also
copiled with rsaref2. Nothing in any of the licenses that I read seemed
to prohibit the use of SSH for internal ISP purposes. I've not even
announced to our users that it's installed (did not install it to replace
the rprogs...so you have to know to use it), but even that is probably not
a problem to do.

I don't seriously believe anyone like Livingston or Cisco is about to
start supporting ssh in addition to or instead of telnet...but it would be
a pleasant surprise. I'm sure a large number of us have terminal servers
or routers with lots of untrusted net between us and the equipment.

------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/hr.
________Finger jlewis@inorganic5.fdt.net for PGP public key_______

Next message: Jon Lewis: "Re: Pricing"
Previous message: Jon Lewis: "Re: Preventing Dial-ins ??"
In reply to: Christopher Oliver: "Re: You want pricing?"
Next in thread: Christopher Oliver: "Re: You want pricing?"