Hi Bennet,
I’m attaching a compressed tar file, chklc_fips.tgz, that is an attempt at
creating a binary
(chklc_fips) that uses its own local version of crypt. See the README file
when you
untar the archive. This is not officially supported in any way, and while it
can read
my license file in
External Email - Use Caution
Hi, Rob,
The call to crypt() appears to be in FreeSurfer's license validation
routine, since it is immediately after reading the license file. In the
sense that FreeSurfer cannot run without some sort of license, and that
license validation is using t
Hello Bennet,
Maybe someone else can chime in on this, as I have not worked on a system
with FIPS, but perhaps there is a way for the FIPS administrator to white list
all the Freesurfer binaries (and the license file), as security exempt.
I know some Enterprise/business applications like Adobe’s
It appears that FreeSurfer is not compatible with systems for which
FIPS level security is mandated. In our case, I am told this is part
of our data use agreement with the VA.
We tried to run it, and I get the following stack trace showing what
appears to be license validation using the crypt() f
I have a couple of users here who are reporting that on machines with
FIPS enabled, which in turn disables certain cryptographic functions,
FreeSurfer core dumps with a call to the crypt() function, which FIPS
disables.
Someone speculated based on output from strace that this is FreeSurfer
possibl