Thank you for the clarification. What you have said
makes sense, but I am still a little unclear on what
is meant by "redistribution" and "products derived from [OpenSSL]".
Presumably, a program, e.g. a web browser, could be written
which uses OpenSSL (whether through linking to the libraries or
by including actual pieces of OpenSSL code), and this browser
would not have to be licensed under the OpenSSL license. This would
be a "product derived from OpenSSL", and users could be forbidden to
redistribute the browser in source or binary forms.
Is this a correct interpretation of what a "product derived" is?
If a person were to take a full OpenSSL distribution and
completely rewrite some source files, but not all source files, of which
libcrypto.a is composed, then compile and distribute the resulting
libraries libssl.a and libcrypto.a, would libssl.a be a
"redistribution", and would libcrypto.a be a "product derived" or a
"redistribution"? In other words, would the person be able to
prohibit redistribution of their new libcrypto.a, even though
it utilizes some unmodified OpenSSL code, and is part of a complete
OpenSSL distribution?
I appreciate your help.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
