My supplier just apologized for messing up my order, and assures me that my SuSE 8.1 Pro is *finally* in the mail. During our conversation, he confirmed that the Canadian regional distributor had gone bankrupt last year, and that nobody seems to be stepping in to replace them. Therefore, SuSE and other software is currently being brought in from the USA (not from Germany or other "foreign" source). However, this means that my new 8.1 will probably have the crippled "export" level encryption... even though the original from Germany probably contained full-strength crypto. My question to the list is: How pervasive is that crippling? Is it just in one or two packages, or is this a far-reaching limitation that reaches into all levels of the distro? I think of PGP/GPG, apache/openssl... but what else will either be missing entirely, or included with only low-strength, pre-broken crypto? Will it be automatically fixed the next time I run YOU, or will YOU leave all the crippled apps and modules crippled unless I know to name them for replacement? (In other words, does gwdg.de and SuSE undertake to enforce Amerika's [or anybody else's] laws onto third parties?) Thanks, /kevin
On Wednesday 30 October 2002 22.16, Kevin McLauchlan wrote:
However, this means that my new 8.1 will probably have the crippled "export" level encryption... even though the original from Germany probably contained full-strength crypto.
I thought the "crippling" issues stopped with 7.0.
Fully functional crypto pkgs have been available on ftp.suse.com and it's mirrors since 7.1. SuSE in no way crippled pkgs before that. The fact is that it was not legal for them to house crypto software on the U.S. servers until 7.1 came out...so they put them on European ftp sites and mirrors. It's a mistaken assumption that any of the crypto software included with 8.1 is crippled in any way. * Anders Johansson (andjoh@rydsbo.net) [021030 13:24]: ->On Wednesday 30 October 2002 22.16, Kevin McLauchlan wrote: ->> However, this means that my new 8.1 will probably have ->> the crippled "export" level encryption... even though ->> the original from Germany probably contained ->> full-strength crypto. -> ->I thought the "crippling" issues stopped with 7.0. -- Ben Rosenberg ---===---===---===--- mailto:ben@whack.org Tell me what you believe.. I tell you what you should see.
On Wednesday 30 October 2002 22.38, Ben Rosenberg wrote:
Fully functional crypto pkgs have been available on ftp.suse.com and it's mirrors since 7.1. SuSE in no way crippled pkgs before that.
Well, the cds sold in the us did not have "strong" encryption compiled into packages such as ssh. Just as Red Hat's European edition didn't. That was the initial reason I switched from Red Hat to SuSE, so I wouldn't have to recompile tons of stuff just to get basic security.
The fact is that it was not legal for them to house crypto software on the U.S. servers until 7.1 came out...so they put them on European ftp sites and mirrors. It's a mistaken assumption that any of the crypto software included with 8.1 is crippled in any way.
That's what I thought too.
* Anders Johansson (andjoh@rydsbo.net) [021030 13:52]: ->On Wednesday 30 October 2002 22.38, Ben Rosenberg wrote: ->> Fully functional crypto pkgs have been available on ftp.suse.com and ->> it's mirrors since 7.1. SuSE in no way crippled pkgs before that. -> ->Well, the cds sold in the us did not have "strong" encryption compiled into ->packages such as ssh. Just as Red Hat's European edition didn't. That was the ->initial reason I switched from Red Hat to SuSE, so I wouldn't have to ->recompile tons of stuff just to get basic security. As of 7.1 there were absolutely no differences between the ssh pkgs. I'm not sure who told anyone this but this difference didn't exist with 7.1 or later. :) -- Ben Rosenberg ---===---===---===--- mailto:ben@whack.org Tell me what you believe.. I tell you what you should see.
On Thursday 31 October 2002 01.36, Ben Rosenberg wrote:
* Anders Johansson (andjoh@rydsbo.net) [021030 13:52]: ->On Wednesday 30 October 2002 22.38, Ben Rosenberg wrote: ->> Fully functional crypto pkgs have been available on ftp.suse.com and ->> it's mirrors since 7.1. SuSE in no way crippled pkgs before that. -> ->Well, the cds sold in the us did not have "strong" encryption compiled into ->packages such as ssh. Just as Red Hat's European edition didn't. That was the ->initial reason I switched from Red Hat to SuSE, so I wouldn't have to ->recompile tons of stuff just to get basic security.
As of 7.1 there were absolutely no differences between the ssh pkgs. I'm not sure who told anyone this but this difference didn't exist with 7.1 or later. :)
We're in agreement then. Great :)
participants (3)
-
Anders Johansson
-
Ben Rosenberg
-
Kevin McLauchlan