Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Disabling Compilation Flags not to use IDEA, MDC2 and RC5 |
|
| Author |
|
cmsb705
Joined: 30 Nov 2012
Posts: 3
Location: US, Fairfax
|
 Posted: Mon 03 Dec '12 17:14 Post subject: Disabling Compilation Flags not to use IDEA, MDC2 and RC5 |
 |
|
The OpenSSL license (http://www.openssl.org/support/faq.html#LEGAL1) indicates the following:
| Quote: | You can configure OpenSSL so as not to use IDEA, MDC2 and RC5 by using:
./config no-idea no-mdc2 no-rc5 |
It appears that the Apachelounge distributions have the IDEA algorithm active, and not disabled, during compile time.
Are there alternate Apachelounge distributions that do not use IDEA, MDC2 and RC5? Since these are patented technologies, some customers will not accept an Apache distribution that includes them. |
|
| Back to top |
|
Steffen
Moderator
Joined: 15 Oct 2005
Posts: 3059
Location: Hilversum, NL, EU
|
| Posted: Mon 03 Dec '12 20:49 Post subject: |
|
|
As far I know is this outdated info, expired. And were subject to patents in certain countries.
For example the IDEA patents have expired in 2012 and IDEA is now patent-free and thus free to use
See also in the readme of the binary.zip:
Legal note:
This distribution includes cryptographic software. The country in
which you are currently may have restrictions on the import,
possession, and use, and/or re-export to another country, of
encryption software. BEFORE using any encryption software, please
check the country's laws, regulations and policies concerning the
import, possession, or use, and re-export of encryption software, to
see if this is permitted. |
|
| Back to top |
|
cmsb705
Joined: 30 Nov 2012
Posts: 3
Location: US, Fairfax
|
|
| Back to top |
|
admin
Site Admin
Joined: 15 Oct 2005
Posts: 679
|
| Posted: Mon 03 Dec '12 22:52 Post subject: |
|
|
Nope.
Included cyphers: | Code: | ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA38
4:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:SRP-DSS-
AES-256-CBC-SHA:SRP-RSA-AES-256-CBC-SHA:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256
-GCM-SHA384:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-D
SS-AES256-SHA:DHE-RSA-CAMELLIA256-SHA:DHE-DSS-CAMELLIA256-SHA:ECDH-RSA-AES256-GC
M-SHA384:ECDH-ECDSA-AES256-GCM-SHA384:ECDH-RSA-AES256-SHA384:ECDH-ECDSA-AES256-S
HA384:ECDH-RSA-AES256-SHA:ECDH-ECDSA-AES256-SHA:AES256-GCM-SHA384:AES256-SHA256:
AES256-SHA:CAMELLIA256-SHA:PSK-AES256-CBC-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA
-DES-CBC3-SHA:SRP-DSS-3DES-EDE-CBC-SHA:SRP-RSA-3DES-EDE-CBC-SHA:EDH-RSA-DES-CBC3
-SHA:EDH-DSS-DES-CBC3-SHA:ECDH-RSA-DES-CBC3-SHA:ECDH-ECDSA-DES-CBC3-SHA:DES-CBC3
-SHA:PSK-3DES-EDE-CBC-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA
256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE
-ECDSA-AES128-SHA:SRP-DSS-AES-128-CBC-SHA:SRP-RSA-AES-128-CBC-SHA:DHE-DSS-AES128
-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-DSS-AES128-SHA25
6:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:DHE-RSA-SEED-SHA:DHE-DSS-SEED-SHA:DHE-RS
A-CAMELLIA128-SHA:DHE-DSS-CAMELLIA128-SHA:ECDH-RSA-AES128-GCM-SHA256:ECDH-ECDSA-
AES128-GCM-SHA256:ECDH-RSA-AES128-SHA256:ECDH-ECDSA-AES128-SHA256:ECDH-RSA-AES12
8-SHA:ECDH-ECDSA-AES128-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:SEED-SHA:
CAMELLIA128-SHA:IDEA-CBC-SHA:PSK-AES128-CBC-SHA:ECDHE-RSA-RC4-SHA:ECDHE-ECDSA-RC
4-SHA:ECDH-RSA-RC4-SHA:ECDH-ECDSA-RC4-SHA:RC4-SHA:RC4-MD5:PSK-RC4-SHA:EDH-RSA-DE
S-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DE
S-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5 |
|
|
| Back to top |
|
cmsb705
Joined: 30 Nov 2012
Posts: 3
Location: US, Fairfax
|
| Posted: Tue 04 Dec '12 18:05 Post subject: |
|
|
| Thanks for the response. Looks like we're in good shape since RC5 is not included. |
|
| Back to top |
|
|
|
|
|
|
