[Sunil Mohan] > I checked a bit on GnuTLS. It does not look pretty. A discussion on > OpenLDAP list strongly discouraged the use of GnuTLS[1][2]. A Debian > developer acknowledges that GnuTLS is only being complied against > OpenLDAP in Debian despite its shortcomings only due to licensing > reasons. > > Although active, most of the contributions seem to come from a single > developer.
As the license issue is not going away, I suspect a good approach is to help the GnuTLS project instad of leaving it behind. But we should know about the issue, and take an informed decition. My experience with the GnuTLS developers is that they are knowledgable and friendly, and that the claim from Howard Chu about them being "too naive and inexperienced to even understand that it's broken" is wrong. But they lack time to do what they want with the library. :) Given the state described in <URL: http://www.openldap.org/lists/openldap-devel/200802/msg00076.html >, and which is still the current state of copyright law as far as I know, we will have to use gnutls in Freedombox no matter what we use with the web browser. -- Happy hacking Petter Reinholdtsen
