Tim Retout <[EMAIL PROTECTED]> writes:
> I don't believe the clarification at
> http://www.ietf.org/ietf/IPR/RSA-MD-all technically grants the right to
> distribute modified versions of the reference implementation code; it
> goes on to say: "No rights other than the ones explicitly set forth
> above are granted."
And among the rights explicitly set forth above is:
"Implementations of these message-digest algorithms, including
implementations derived from the reference C code in RFC-1319,
RFC-1320, and RFC-1321, may be made, used, and sold without license
from RSA for any purpose."
Notice the explicit inclusion of derivative works in the rights grant.
I really think this is sufficiently clear.
> However, I'm willing to accept that this isn't a 'serious' bug. Would
> you like a patch so that this doesn't come up again?
The existing MD5 implementation works, is well-tested, has a DFSG-free
license, and has already been adapted for INN. I don't see any reason to
change it.
--
Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
