[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Demexp-dev] SSL library: which one to use
From: |
Frédéric Lehobey |
Subject: |
Re: [Demexp-dev] SSL library: which one to use |
Date: |
Wed, 28 Jan 2004 21:35:29 +0100 |
User-agent: |
Mutt/1.3.28i |
Dear David,
> Right now, I know about:
>
> OpenSSL http://www.openssl.org/
>
> MatrixSSL http://matrixssl.org/
>
> GnuTLS http://www.gnu.org/software/gnutls/
>
>
> Personnally, I'm in favor of OpenSSL. Well known, well scrutinized, well
> maintained. There is a small licensing issue with the GPL but we can add
> a specific clause to solve the issue.
>
> I know that Fred would prefer us to use another library for licensing
> issues. I don't have much technical argument pro or con OpenSSL except
> that everybody uses it.
>
> Has anybody other pointer? What do you think of it?
Yes, you forgot LSH (SSH2 GPL implementation):
<http://www.lysator.liu.se/~nisse/lsh/>
and in Debian :
<http://packages.qa.debian.org/l/lsh-utils.html>.
I would suggest, if it is not too complicated, to keep a crypto
layer common to both OpenSSL and LSH (or any other that would suit).
The one who writes the code is the one who decides.
Best regards,
Frédéric