[1039] in Coldmud discussion meeting

root meeting help first first in chain previous in chain previous next next in chain last in chain last

Re: [COLD] encryption, DES, MD5, SHA-1(?)

daemon@ATHENA.MIT.EDU (Wed Jul 24 11:52:14 1996 )

Date: Wed, 24 Jul 1996 10:18:16 -0500 (CDT)
From: Stephen Smoogen <smooge@duracef.shout.net>
To: Brandon Gillespie <brandon@tombstone.sunrem.com>
cc: coldstuff@cold.org
In-Reply-To: <Pine.BSF.3.91.960723171111.21255A-100000@tombstone.sunrem.com>

On Tue, 23 Jul 1996, Brandon Gillespie wrote:

> I would prefer to ship a specific crypt with the driver, so it is always 
> the same.  However, there are legal concerns--unfortunately I am not 
> aware of what they are specifically.

The legal concerns are such that is probably best that you make the crypt
a seperate module that has to explicitely be gotten. You then have a group
of people outside of the states also write a module with whatever
encryption matters (without looking at your source code) and supplying it
with their version. 


> 
> I doubt we can ship DES (like it would matter).
> 

Sadly I dont think so UNLESS you you like use the version from 
Australia.. what happens then is that you are using their libraries at 
compile time and it is up to the users of the Cold to have gotten it.

> Can we ship MD5 internationally without reprecussions?
> 

Hmmm I see that GNU ships md5sum in their textutils package... so 
possibly. 

> What is SHA-1?  Can we ship it internationally etc?
> 
> What does MOO use for string_hash()?  Is it as good as MD5 or others?
> 
> Source?
> 
> I can shag md5 from the FreeBSD distribution, if I can get some factual 
> information about shipping with it..



------------------------------------------------------------------------------
Stephen John Smoogen 	
Recovering Sysadmin (well ok... I still sysadmin... I cant stop)..
217-351-8093