httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Randy Terbush <>
Subject Re: ifdef APACHE_SSL
Date Sat, 05 Jul 1997 23:08:27 GMT
As Rasmus also pointed out, current climate would make it absurd 
and certain political suicide to go after the group on this issue. 
Especially on something as stupid as the "hooks"/macros to allow a 
module to be compiled into the server. We're not talking about 
distributing crypto code, we're talking about being able to 
distribute portable code.

Quite honestly, Apache may have enough of a base to actually 
influence some of the decisions about this absurdity.

> The other thing to consider is that, completely unrelated to the legal
> issues, a better abstraction would be good.  However, this probably has to
> wait for 2.0.  A good goal would be a completely abstracted setup so the
> SSL could be dropped in as a module.  If it is general enough, then there
> may be nothing to fear legally because they aren't crypto hooks, just
> anything hooks.
> Not sure if doing anything else for 1.3 would be good or not.
> On Sat, 5 Jul 1997, Rasmus Lerdorf wrote:
> > > I'm interested in starting a discussion about putting some of these 
> > > hooks back in. I think things have cooled sufficiently that we 
> > > could do this.
> > 
> > We've discussed this briefly before.  As far as I understand things, the
> > decision should be Brian's since the code would be available from his
> > server.  He would be the only person taking any sort of risk.  However, I
> > think the risk is non-existant.  I don't realistically see anybody going
> > after someone like the Apache Group for this with all the talk about
> > abolishing those export restrictions and courts refusing to uphold the
> > bogus law.  I say go for it.  I would love to see a mod_ssl with
> > appropriate hooks in standard Apache for it to work.
> > 
> > -Rasmus
> > 

View raw message