> 2)Perhaps I did not make it clear but our policy is not to include
> any cryptographic software directly into our applications.
You might want to reconsider this policy. Do you expect much revenue
from the banned country list? Is it worth the development and support
cost of keeping track with openssl versions? Are you sure that you are
not in violation if you say "install openssl on your own"? (The answer
to that last question *used* to be: yes, you are in violation. Now, I
don't know.)
/r$
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
