[rsyslog] openssl vs rsyslog
Michael Biebl
mbiebl at gmail.com
Mon Mar 31 20:34:40 CEST 2008
2008/3/31, Rainer Gerhards <rgerhards at hq.adiscon.com>:
> Oh, excellent feedback. And I thought that openssl is the workhorse of os tls - wrong preception obviously ;)
>
> Can you point me to the problem description? What would i need to exempt?
Google for "openssl gpl" and you should find relevant information.
E.g. [1] tries to summarize the problem.
It also has a proposal for such a OpensSSL exemption. You should add
this addendum to COPYING and probably also ship the original OpenSSL
COPYING file (e.g. as COPYING.OpenSSL)
>
> Is any of the alternates suitable for production use, especially in a highly threaded environment? GNU, from the name, sounds appealing...
A prominent example of a project using GnuTLS is e.g. samba (if it's
highly threaded, I don't know). OpenLDAP in Debian also uses GnuTLS.
A prominent example of a project using NSS is mozilla/firefox/thunderbird.
I think the more widely used library is GnuTLS. I really don't have
that much experience with either of these libraries, so it's hard to
give a recommendation.
Cheers,
Michael
> [1] http://www.gnome.org/~markmc/openssl-and-the-gpl.html
> [2] http://www.gnu.org/software/gnutls/
> [3] http://www.mozilla.org/projects/security/pki/nss/
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
More information about the rsyslog
mailing list