Received: by taz.hyperreal.com (8.6.12/8.6.5) id HAA28701;
 Sun, 17 Mar 1996 07:15:46 -0800
Received: from ast.cam.ac.uk by taz.hyperreal.com (8.6.12/8.6.5) with ESMTP id
 HAA28693; Sun, 17 Mar 1996 07:15:43 -0800
Received: from mamba.ast.cam.ac.uk by ast.cam.ac.uk (SMI-8.6/SMI-SVR4)
	id PAA15324; Sun, 17 Mar 1996 15:15:34 GMT
Received: by mamba.ast.cam.ac.uk (Smail3.1.29.1 #9)
	id m0tyKBB-0000kHC; Sun, 17 Mar 96 15:15 GMT
Message-Id: <m0tyKBB-0000kHC@mamba.ast.cam.ac.uk>
Date: Sun, 17 Mar 96 15:15 GMT
From: drtr@ast.cam.ac.uk (David Robinson)
To: new-httpd@hyperreal.com
Subject: Re: MD5 Digest auth and other things...
Sender: owner-new-httpd@apache.org
Precedence: bulk
Reply-To: new-httpd@hyperreal.com

>Date: Sun, 10 Mar 1996 21:59:10 -0800 (PST)
>From: Alexei Kosut <akosut@nueva.pvt.k12.ca.us>
>
>On Sun, 10 Mar 1996, Ben Laurie wrote:
>
>> > util_md5.c/util_md5.h: This is basically the md5.c file stolen from
>> >     NCSA httpd 1.5.1b3 (with proper attribution), modified to use
>> >     Apache's memory allocation routines. It has some MD5 utilities (hence
>> >     the name).
>> 
>> Are we allowed to steal things from NCSA 1.5???
>
>Dunno. But NCSA stole it from Spyglass, CMU and Bellcore, so... If it's
>not okay, I can rewrite it with code stolen from RFC 1321, which in turn
>is stolen from RSA. No original MD5 code exists, I don't think. 
>Everything's stolen from someone else :)

This doesn't make sense; I've _already_ incoperated the RSA code into
Apache. Why do it twice?

[N.B. I don't have access to your patches, so can't check on this]

 David.