[rsyslog] openssl vs rsyslog
seth vidal
skvidal at fedoraproject.org
Mon Mar 31 20:38:19 CEST 2008
On Mon, 2008-03-31 at 20:34 +0200, Michael Biebl wrote:
> 2008/3/31, Rainer Gerhards <rgerhards at hq.adiscon.com>:
> > Oh, excellent feedback. And I thought that openssl is the workhorse of os tls - wrong preception obviously ;)
> >
> > Can you point me to the problem description? What would i need to exempt?
>
> Google for "openssl gpl" and you should find relevant information.
> E.g. [1] tries to summarize the problem.
> It also has a proposal for such a OpensSSL exemption. You should add
> this addendum to COPYING and probably also ship the original OpenSSL
> COPYING file (e.g. as COPYING.OpenSSL)
>
> >
> > Is any of the alternates suitable for production use, especially in a highly threaded environment? GNU, from the name, sounds appealing...
>
>
> A prominent example of a project using GnuTLS is e.g. samba (if it's
> highly threaded, I don't know). OpenLDAP in Debian also uses GnuTLS.
> A prominent example of a project using NSS is mozilla/firefox/thunderbird.
>
> I think the more widely used library is GnuTLS. I really don't have
> that much experience with either of these libraries, so it's hard to
> give a recommendation.
>
the library that a lot of folks inside red hat and fedora are driving
people to is the mozilla nss library. It handles all the bits openssl
does and w/o the licensing problems.
-sv
More information about the rsyslog
mailing list