[Development] OpenSSL certificate validation

Samuel Gaist samuel.gaist at edeltech.ch
Mon Aug 26 17:14:29 CEST 2013

On 26 août 2013, at 17:10, Thiago Macieira wrote:

> On segunda-feira, 26 de agosto de 2013 12:00:23, Florian Weimer wrote:
>> On 08/14/2013 05:16 PM, Thiago Macieira wrote:
>>> On quarta-feira, 14 de agosto de 2013 09:32:33, Florian Weimer wrote:
>>>>> I'm located in the US, so I'm not allowed to modify the SSL code. If
>>>>> you're in the US, you're not either. And now here's an interesting
>>>>> question: are people working for American companies allowed to modify
>>>>> the
>>>>> SSL code?
>>>> That's a project policy question, not a legal question, right?
>>> Legal, actually. The rule was "US persons and persons located in the US",
>>> and since "companies are people", I believe it applies to the company too
>>> (copyright holder).
>> Okay, so how can we move this forward?  I suppose you don't need a patch
>> from me to remove that line.
> It's been explained and hopefully someone can do it.

If I understood the problem correctly, it must be someone that is based i.e. in Europe and not working for an US company ?

More information about the Development mailing list