outer@utcsri.UUCP (Richard Outerbridge) (01/26/86)
Last fall there was an animated discussion of foreign UNIXen from which the cryptographic innards had been excised. If there is still some interest in this problem, I have a package of routines written for GNU which are available for pre-release. The utilities included are encrypt(1), decrypt(1), auth(1), getpass(3), crypt(3) and gnude(3). encrypt and decrypt replace crypt(1); auth is new; and gnude(3) is called by all the others to do their dirty work. The routines are nowhere near as small and fast as the standard stuff, but they're not too bad. One big disadvantage is that every time gnude(3) is started up it performs some rather massive initialisations. There is no problem distributing this software within North America, but sending it elsewhere raises a number of legal questions. Because it is "technical data" rather than equipment it >should< fall under section 10003 of Canada's Export Control List rather than the "cryptographic equipment" paragraph of section three; because (I claim) it has a value of less than $50.00 Canadian (it's in the public domain and I'm giving it away) it should be covered by "General Export Permit No. Ex. 1" (CRC C. 611, S. 2(1)). This is a blanket exemption from export control >except< to countries on the "Area Control List" (i.e. the bad guys). However, permits may in fact be needed after all. To avoid having to obtain an American permit, the software will have to go via mail rather than over the net. In any event, anyone interested in getting a copy should send me some mail. Unfortunately I'm not in a position to offer machine readable source to offshore sites, so foreign distribution would be limited to source listings alone. If there's enough domestic demand a posting to net.sources (north america only, of course) might be in order. -- Richard Outerbridge <outer@utcsri.UUCP> (416) 961-4757 Payload Deliveries: N 43 39'36", W 79 23'42", Elev. 106.47m.