Re: [Auth]Okay, so how about some code...

[Mason Ham]

Well I guess that depends on what is meant by "get rid of". Obviously we
have to have a cryptographic module for the service. The questions then
becomes how good of an install can be made. The last one I build that did
something close to this was in ZeroG's software, and it wasn't to bad ... it
took about two weeks to develop, debug and QA. Now that was simply doing
things for a singular choice. Further, remember that this is only for
systems that would want to run as an Auth. server, not for the clients that
wanted to use the auth. server, they simply use the ssl package that is on
there system. So I would say maybe triple the two weeks to six to have it be
a "slick" install for it. I also think that it will be easier than that
given that we could use ANT or some other "build" tool instead of an install
tool. Finally, if we stay in the Java world with it, I think we could do it
somewhat cleanly with out an install and have it all JAR'd up into one
system. I have never done that with a system, but I think BEA has done so we
should be able to figure it out. Again, this isn't for the end clients, it
is for the end clients that want to be servers.

Mason
----- Original Message -----
From: "Norbert Bollow" <address@hidden>
To: <address@hidden>
Cc: <address@hidden>
Sent: Wednesday, October 03, 2001 6:58 AM
Subject: Re: [Auth]Okay, so how about some code...


> Mason Ham <address@hidden> wrote:
>
> > Basically in a nut shell I have been working on making a dual =
> > license for our software. Now before I go further with getting the code
=
> > under GPL, I am interested in knowing whether or not people on this list
=
> > are interested the technology I would "donate" to the cause.
>
> This all sounds very, very interesting.
>
> > The bad stuff (opinion):
> > 1) The package requires you to install JCE on java based systems. =
> > Further you have to install the provider that you want to use. We have =
> > tested it with stuff from cryptix and STLabs. We think it will work out
=
> > of the box with RSA(Anyone got a license from them to use there =
> > CryptoJ?) and we think it wont be that bad to use PGP (The new =
> > version/company). The MSFT CryptoAPI stuff also works with the =
> > alpha-version of that package we have.
>
> What do you think, how much work would it be to get rid of these
> requirements?
>
> Greetings, Norbert.
>
> --
> A member of FreeDevelopers and the DotGNU Steering Committee: dotgnu.org
> Norbert Bollow, Weidlistr.18, CH-8624 Gruet   (near Zurich, Switzerland)
> Tel +41 1 972 20 59       Fax +41 1 972 20 69      http://thinkcoach.com
> Your own domain with all your Mailman lists: $15/month  http://cisto.com
> _______________________________________________
> Auth mailing list
> address@hidden
> http://subscribe.dotgnu.org/mailman/listinfo/auth
>