X-Original-To: alpine-devel@lists.alpinelinux.org
Delivered-To: alpine-devel@mail.alpinelinux.org
Received: from apollo.thewebhostserver.com (apollomail.thewebhostserver.com [46.23.65.248])
	(using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.alpinelinux.org (Postfix) with ESMTPS id C1701DC39CF
	for <alpine-devel@lists.alpinelinux.org>; Mon, 27 Oct 2014 16:05:28 +0000 (UTC)
Received: from a81-84-17-80.cpe.netcabo.pt ([81.84.17.80]:59384 helo=[192.168.0.14])
	by apollo.thewebhostserver.com with esmtpsa (UNKNOWN:DHE-RSA-AES128-SHA:128)
	(Exim 4.82)
	(envelope-from <developer@it-offshore.co.uk>)
	id 1Ximmm-003Osd-0m
	for alpine-devel@lists.alpinelinux.org; Mon, 27 Oct 2014 16:05:25 +0000
Message-ID: <544E6D21.1000108@it-offshore.co.uk>
Date: Mon, 27 Oct 2014 16:04:49 +0000
From: IT Developer <developer@it-offshore.co.uk>
Reply-To: developer@it-offshore.co.uk
Organization: IT Offshore
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.2.0
X-Mailinglist: alpine-devel
Precedence: list
List-Id: Alpine Development <alpine-devel.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-devel+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-devel@lists.alpinelinux.org>
List-Help: <mailto:alpine-devel+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-devel+subscribe@lists.alpinelinux.org?subject=subscribe>
MIME-Version: 1.0
To: alpine-devel@lists.alpinelinux.org
Subject: Re: [alpine-devel] LibreSSL - Thoughts on Integration
References: <AA12821A-4861-49EA-BF61-0A7F64AA0896@gmail.com>	<20141026092034.4491cfcc@vostro>	<AD1CAE38-56FC-4EFC-8FE1-373D1BD689DA@gmail.com> <CAKv362tYmqmt96VK-dat1TPotHa0Xyt9PtwpEzcjCrWA9a+smA@mail.gmail.com>
In-Reply-To: <CAKv362tYmqmt96VK-dat1TPotHa0Xyt9PtwpEzcjCrWA9a+smA@mail.gmail.com>
Content-Type: multipart/alternative;
 boundary="------------070504050005040500010208"
X-OutGoing-Spam-Status: No, score=-2.9
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - apollo.thewebhostserver.com
X-AntiAbuse: Original Domain - lists.alpinelinux.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - it-offshore.co.uk
X-Get-Message-Sender-Via: apollo.thewebhostserver.com: authenticated_id: developer@it-offshore.co.uk
X-Source: 
X-Source-Args: 
X-Source-Dir: 

This is a multi-part message in MIME format.
--------------070504050005040500010208
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

It's also possible to build OpenVPN with PolarSSL:

https://community.openvpn.net/openvpn/wiki/UsingPolarSSL

this is the version used by the Dutch government
<http://www.yro.slashdot.org/story/11/11/24/1827251/dutch-government-officially-trusts-openvpn-nl>.


On 10/27/2014 03:06 PM, Chris Spillane wrote:
> well, since nobody has mentioned it yet I'm going to throw this one
> into the mix:
>
> How about PolarSSL?
>
> https://polarssl.org
>
> On 26 October 2014 20:10, systmkor <systmkor@gmail.com
> <mailto:systmkor@gmail.com>> wrote:
>
>
>     > We discussed this when libressl was published, and decided to
>     wait at
>     > least a little bit because the initial versions had some bugs,
>     and the
>     > portable version was not available.
>
>
>     It appears that the portable version is somewhat stable now. I
>     think this is the
>     official repository for it.
>     https://github.com/libressl-portable/portable
>
>
>     > There was also discussion on picking up some other proven crypto
>     > library with better license, and just write openssl api layer
>     for it.
>     > But this is a lot bigger job and has not progressed since.
>
>     While I am not a huge fan of the BSD license but I do think it
>     has its appropriate uses. There is also BoringSSL at
>     https://boringssl.googlesource.com/ which could eventually become
>     another alternate version.
>
>
>     > I think we'll reconsider starting using libressl after next stable
>     > branching of Alpine (which is due in few weeks).
>
>     Should I create an issue for this on redmine tracker?
>
>
>
>
> -- 
> Chris Spillane
>


--------------070504050005040500010208
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit

<html>
  <head>
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000099">
    <font face="Helvetica, Arial, sans-serif">It's also possible to
      build OpenVPN with PolarSSL:<br>
      <br>
      <a href="https://community.openvpn.net/openvpn/wiki/UsingPolarSSL">https://community.openvpn.net/openvpn/wiki/UsingPolarSSL</a></font><br>
    <br>
    <font face="Helvetica, Arial, sans-serif">this is the version <a
href="http://www.yro.slashdot.org/story/11/11/24/1827251/dutch-government-officially-trusts-openvpn-nl">used
        by the Dutch government</a>.</font><br>
    <br>
    <br>
    <div class="moz-cite-prefix">On 10/27/2014 03:06 PM, Chris Spillane
      wrote:<br>
    </div>
    <blockquote
cite="mid:CAKv362tYmqmt96VK-dat1TPotHa0Xyt9PtwpEzcjCrWA9a+smA@mail.gmail.com"
      type="cite">
      <div dir="ltr">
        <div>well, since nobody has mentioned it yet I'm going to throw
          this one into the mix:<br>
          <br>
        </div>
        How about PolarSSL?<br>
        <br>
        <a moz-do-not-send="true" href="https://polarssl.org">https://polarssl.org</a><br>
      </div>
      <div class="gmail_extra"><br>
        <div class="gmail_quote">On 26 October 2014 20:10, systmkor <span
            dir="ltr">&lt;<a moz-do-not-send="true"
              href="mailto:systmkor@gmail.com" target="_blank">systmkor@gmail.com</a>&gt;</span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex"><span
              class=""><br>
              &gt; We discussed this when libressl was published, and
              decided to wait at<br>
              &gt; least a little bit because the initial versions had
              some bugs, and the<br>
              &gt; portable version was not available.<br>
              <br>
              <br>
            </span>It appears that the portable version is somewhat
            stable now. I think this is the<br>
            official repository for it. <a moz-do-not-send="true"
              href="https://github.com/libressl-portable/portable"
              target="_blank">https://github.com/libressl-portable/portable</a><br>
            <span class=""><br>
              <br>
              &gt; There was also discussion on picking up some other
              proven crypto<br>
              &gt; library with better license, and just write openssl
              api layer for it.<br>
              &gt; But this is a lot bigger job and has not progressed
              since.<br>
              <br>
            </span>While I am not a huge fan of the BSD license but I do
            think it<br>
            has its appropriate uses. There is also BoringSSL at<br>
            <a moz-do-not-send="true"
              href="https://boringssl.googlesource.com/" target="_blank">https://boringssl.googlesource.com/</a>
            which could eventually become<br>
            another alternate version.<br>
            <span class=""><br>
              <br>
              &gt; I think we'll reconsider starting using libressl
              after next stable<br>
              &gt; branching of Alpine (which is due in few weeks).<br>
              <br>
            </span>Should I create an issue for this on redmine tracker?<br>
            <br>
          </blockquote>
        </div>
        <br>
        <br clear="all">
        <br>
        -- <br>
        Chris Spillane<br>
        <br>
      </div>
    </blockquote>
    <br>
  </body>
</html>

--------------070504050005040500010208--


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---