Openssl is great but I can't legally use it commercially in my server. However, Microsoft has an API called SSPI (under NT4 and Win2000) -- buried there somewhere is an SSL implementation that is free for the taking, but not really documented . Also there is a crypto api that I believe gets you the RSA public-key functions. Theoretically the patented code in openssl could be removed and a mod made to use the above apis to make a legal-for-commercial-use-in-the-usa SSL package. Has anyone tinkered with these apis? -Brian Poe ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]