From owner-doc-jp@jp.freebsd.org  Sun Feb 13 04:08:05 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id EAA76818;
	Sun, 13 Feb 2000 04:08:05 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from sv01.geocities.co.jp (sv01.geocities.co.jp [210.153.89.155])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id EAA76787
	for <doc-jp@jp.freebsd.org>; Sun, 13 Feb 2000 04:08:05 +0900 (JST)
	(envelope-from hrs@geocities.co.jp)
Received: from mail.geocities.co.jp (mail.geocities.co.jp [210.153.89.137]) by sv01.geocities.co.jp (8.9.3+3.2W/3.7W) with ESMTP id EAA20896 for <doc-jp@jp.freebsd.org>; Sun, 13 Feb 2000 04:08:05 +0900 (JST)
Received: from mail.hrs.jp (sutnmax1-ppp41.ed.noda.sut.ac.jp [133.31.173.51]) by mail.geocities.co.jp (1.3G-GeocitiesJ-3.3) with ESMTP id EAA06092 for <doc-jp@jp.freebsd.org>; Sun, 13 Feb 2000 04:08:03 +0900 (JST)
Message-Id: <200002121908.EAA06092@mail.geocities.co.jp>
Received: from localhost (alph.hrs.jp [192.168.0.10])
	by mail.hrs.jp (8.9.3/3.7W/DomainMaster) with ESMTP id DAA06720
	for <doc-jp@jp.freebsd.org>; Sun, 13 Feb 2000 03:24:43 +0900 (JST)
	(envelope-from hrs@hrs.jp)
To: doc-jp@jp.freebsd.org
X-Mailer: Mew version 1.94 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Sun, 13 Feb 2000 03:24:41 +0900
From: Hiroki Sato <hrs@geocities.co.jp>
X-Dispatcher: imput version 990905(IM130)
Lines: 44
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: doc-jp 7018
Subject: [doc-jp 7018] books/handbook/security/chapter.sgml #1
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: hrs@geocities.co.jp

$B:4F#!wEl5~M}2JBg3X$G$9!#(B

 OpenSSL $B4XO"$NOCBj$,DI2C$5$l$?(B security/chapter.sgml $B$G$9!#(B

(books.handbook/security/chapter.sgml 1.23 -> 1.24 #1)

+  <sect1 id="openssl">
+    <title>OpenSSL</title>
+
+    <para>As of FreeBSD 4.0, the OpenSSL toolkit is a part of the base
+      system.  <ulink url="http://www.openssl.org/">OpenSSL</ulink>
+      provides a general-purpose cryptography library, as well as the
+      Secure Sockets Layer v2/v3 (SSLv2/SSLv3) and Transport Layer
+      Security v1 (TLSv1) network security protocols.</para>
+
+    <para>However, some of the algorithms (specifically, RSA and IDEA)
+      included in OpenSSL are protected by patents in the USA and
+      elsewhere, and are not available for unrestricted use (in
+      particular IDEA is currently not available in any of FreeBSD's
+      OpenSSL distributions).  In addition, export of cryptographic code
+      from the USA has (until recently) been heavily restricted.  As a
+      result, FreeBSD has available three different versions of OpenSSL
+      depending on geographical location (USA/non-USA) and compliance with
+      the RSAREF license (see below).</para>
+
+    <para>RSA is a useful algorithm which is required for a lot of
+      third-party software which uses OpenSSL (as well as for the SSLv2
+      protocol), so you should enable it if at all possible.</para>
+
+    <sect2>
+      <title>Source Code Installations</title>
+      
+      <para>OpenSSL is part of the <literal>src-crypto</literal> and
+	<literal>src-secure</literal>cvsup collections.  See the <link
+	linkend="mirrors">Obtaining FreeBSD</link> section for more
+	information about obtaining and updating FreeBSD source
+	code.</para>
+    </sect2>

--
| $B:4F#(B $B9-@8!wEl5~M}2JBg3X(B <hrs@geocities.co.jp>
|
|                                  j7397067@ed.noda.sut.ac.jp(univ)
|                        hrs@jp.FreeBSD.org(FreeBSD doc-jp Project)
