From: Shane Dempsey (sdempsey at domain iol.ie)
Date: Thu 13 May 1999 - 12:33:02 IST
I have been working on a CORBA security service for a C++ ORB for a while
now. It is pretty much finished now though. The US encryption export laws
were the greatest single problem that we encountered on the project.
Ideally we would have liked to use Kerberos but we ended up using the
open source version of SESAME which is OK but needed a bit of a rewrite to
get to work with LIBC SUSE5.3 instead of RH 5.0
We then adopted a swedish , kerberos based clone called Heimdal.
This contained comments like ,
"Before reporting a bug , check to make sure that it is really a bug nad
not just a feature that isn't implemented yet"
or even better
"Not sure about this , could cause loads of problems!!!"
To use this with a java product required another bloody huge rewrite of a
free java - GSS_API NMI wrapper.
All bacause we couldn't use kerberos, which uses the standard libdes
anyway, AFAIK.
These encyrption laws are a major pain in the ass for non US security
developers, which is the intention I suppose. Is there any end in sight??
...shane D
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:12 GMT