vsftpd (GPL) and openssl?

Pekka Savola pekkas at netcore.fi
Wed Sep 8 11:02:41 UTC 2004


On Wed, 8 Sep 2004, Rui Miguel Seabra wrote:
> On Tue, 2004-09-07 at 23:28 -1000, Warren Togami wrote:
> > I just noticed this in cvs-commits.  Another new instance of GPL linking 
> > with openssl.  Problematic?
> > 
> > Even if the vsftpd authors wont sue us for any possible GPL violation, 
> > does this possibly open a weak link in vsftpd's supposedly "very 
> > secure"ness?  Even if ssl is disabled by default in our config?  Please 
> > be sure...
> 
> I think the case is beggining to grow for inclusion of GNUtls.

Replacing OpenSSL with GNUtls would very likely increase, not 
decrease, the security implications.

>From the license/policitical/religious point of view, it might be 
closer in spirit to the vsftpd though.

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings





More information about the fedora-devel-list mailing list