> Rather than even look into this, I chose to compile without IDEA. I also
> copiled with rsaref2. Nothing in any of the licenses that I read seemed
> to prohibit the use of SSH for internal ISP purposes.
At one time, I think the RSAREF license was stated in such a way as to
expressly prohibit any use of RSA, Diffie/Hellman, and other RSADSI owned
technologies where data was transfered for revenue generating purposes.
While I think the current license on RSAREF v2.0 is far more permissive
(I glanced at it today), I believe the previous language meant virtually
any business use where data was communicated infringed on the patents.
I can dig out the previous language if you're curious. Still, I'd be
very worried about using this until our lawyers gave me the all clear.
> a pleasant surprise. I'm sure a large number of us have terminal servers
> or routers with lots of untrusted net between us and the equipment.
Even in this instance, one could write a trusted third party system. Ker-
beros is one example. At one time I had planned one using Newman/Stubble-
bine protocol and Blowfish, but our talks with the client deteriorated
before I got the beast designed. Basically, they wanted us to in effect
subsidize a T1 for their use. There was no money there for service let
alone cryptology R & D.
-- Christopher Oliver Traverse Communications Systems Coordinator 223 Grandview Pkwy, Suite 108 oliver@traverse.com Traverse City, Michigan, 49684 (define magic (lambda (f) (lambda (x) x))) (define (more-magic n) (lambda (f) (lambda (x) (f ((n f) x)))))