From owner-FreeBSD-users-jp@jp.freebsd.org  Sun Sep 10 06:48:04 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id GAA94580;
	Sun, 10 Sep 2000 06:48:04 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from asao.gcd.org (qmailr@asao.gcd.org [210.145.125.162])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id GAA94575
	for <FreeBSD-users-jp@jp.freebsd.org>; Sun, 10 Sep 2000 06:48:02 +0900 (JST)
	(envelope-from hiroo@oikumene.gcd.org)
Received: (qmail 27834 invoked by uid 10); 10 Sep 2000 06:48:02 +0900
Received: (qmail 25591 invoked from network); 9 Sep 2000 21:47:53 -0000
Received: from chrysanthe.oikumene.gcd.org (HELO localhost) (192.168.0.12)
  by ns.oikumene.gcd.org with SMTP; 9 Sep 2000 21:47:53 -0000
To: FreeBSD-users-jp@jp.freebsd.org
From: Hiroo ONO (=?iso-2022-jp?B?GyRCPi5MbjQyQDgbKEI=?=) <hiroo@oikumene.gcd.org>
In-Reply-To: <200009091827.DAA26772@smtp1.nifty.ne.jp>
References: <20000909133210A.hiroo@oikumene.gcd.org>
	<200009091827.DAA26772@smtp1.nifty.ne.jp>
	<200009082200.HAA10075@ums509.nifty.ne.jp>
X-Mailer: Mew version 1.94.1 on Emacs 20.7 / Mule 4.0 (HANANOEN)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20000910064805B.hiroo@oikumene.gcd.org>
Date: Sun, 10 Sep 2000 06:48:05 +0900
X-Dispatcher: imput version 20000228(IM140)
Lines: 171
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 54979
Subject: [FreeBSD-users-jp 54979] Re: [Q]make.conf: NO_RSAINTL=YES ?
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: hiroo@oikumene.gcd.org

$B>.Ln42@8$G$9(B

From: Ohara Kanichi <okan@mba.nifty.ne.jp>
Date: Sun, 10 Sep 2000 03:26:41 +0900 (JST)

> -stable $B9XFI$7$F$^$9$7!"OCBj$K$J$C$F$?$N$bCN$C$F$$$^$9!#(B
> $B%O%s%I%V%C%/$bFI$_$^$7$?!#(B

$B$=$l$O<:Ni$7$^$7$?!#(B

> DES, MD5, $B%"%a%j%+HG!"9q:]HG(B RSA, CRYPT, SECURE

$B$HJBNs$5$l$F$$$k$N$r$_$F!VFI$^$J$+$C$?!W$HH=CG$7$F$7$^$$$^$7$?!#(B _o_

MD5$B!"(BDES$B!"(BRSA $B$K$D$$$F$O!"(BFreeBSD $B$N30$G$b2r@b$,$_$D$+$k$H;W$$$^$9$N$G!"(B
$B>\$7$$$3$H$O$*$$$F$*$$$F!"(BFreeBSD handbook $B$+$i$o$+$k$3$H$O!"(B

/usr/share/doc/ja/books/handbook/security.html $B$h$j(B

      UN*X $B%7%9%F%`$K$*$$$F%Q%9%o!<%I$rJ]8n$7(B, $B4JC1$KGA$+$l$k$N$rKI(B $B$0(B
      $B$?$a$K(B, $B=>Mh%Q%9%o!<%I$O$"$kJ}K!$K$h$j%9%/%i%s%V%k$5$l$F$-$^$7$?(B. 
      $B%Y%k8&$N(B Unix $BBh(B7$BHG$K;O$^$C$F0JMh(B, $B%Q%9%o!<%I$O%;%-%e%j%F%#$N@l(B
      $BLg2H$,$$(B $B$&$H$3$m$N(B``$B0lJ}8~%O%C%7%e4X?t(B'' $B$H$$$&$b$N$rMQ$$$k$3$H(B
      $B$K$h$j0E9f2=$5$l$k$h$&$K$J$j$^$7$?(B.  $B$D$^$j(B, $B2DG=$J8B$j$N%Q%9%o!<(B
      $B%I6u4V$r8!:w$9$k$H$$$&6/0z$JJ}K!0J30$K$=$N%*%j%8%J%k$rF@$k$3$H$,(B
      $B$G$-$J$$(B, $B$H$$$C$?J}K!$G%Q%9%o!<%I$OJQ49(B $B$5$l$k$N$G$9(B. $BIT9,$J$3(B
      $B$H$K(B, $B$=$NEv;~(B AT&T $B$N8&5f<T$?$A$,<j$KF~$l$k$3$H$,$G$-$?M#0l$N0E(B
      $B9f2=J}K!$O(B DES(Data Encryption Standard) $B$K4p$E$$$?$b$N$G$7(B $B$?(B. 
      $B$3$l$O1DMx4k6H$K$H$C$F$OBg$7$FLdBj$G$O$"$j$^$;$s$,(B, FreeBSD $B$N$h(B
      $B$&$K$9$Y$F$N%=!<%9%3!<%I$,<+M3$K<j$KF~$k%*%Z%l!<%F%#%s%0%7%9%F%`(B
      $B$K$H$C(B $B$F$O=EBg$JLdBj$H$J$j$^$9(B.  $B$J$<$J$i(B, $BB?$/$N@/I\$O(B DES $B$d(B
      $B$=$NB>$N0E9f2=%=%U%H%&%'%"$,9q6-$r1[$($k$3$H$K@)8B$r$D$1$h$&$H$7(B
      $B$F$$$k$+$i$G$9(B.

$B$H$$$&$h$&$K!":GDc8B$O(B password ($B$H!"%$%s%9%H!<%k$N;~$H$+!"(Bports $B$r(B
build $B$9$k;~$H$+!D(B) $B$,$i$_$G0lJ}8~(B hash $B4X?t$,I,MW$J$N$@$1$I!"0E9f2=!&(B
$BI|9f2=%"%k%4%j%:%`$N(B DES $B$,;H$o$l$F$$$F!D$H$$$&OC$G$7$g$&!#(B

      $B$3$3$G(B, FreeBSD $B%A!<%`$O0l$D$N%8%l%s%^$KD>LL$7$^$7$?(B.  $B$D$^$j(B, 
      $B$I$&$9(B $B$l$PK!$K?($l$k$3$H$J$/9q30$K$"$k$=$l$i$N(B UNIX $B%7%9%F%`$N(B
      $B$9$Y$F$K8_49@-$r;}(B $B$?$;$k$3$H$,$G$-$k$+(B, $B$H$$$&$3$H$G$9(B. $B;d$?$A(B
      $B$O(B ``dual track approach'' $B$r<h$k$3$H$K7h$a$^$7$?(B.  $B5,@)$5$l$F$$(B
      $B$J$$%Q%9%o!<%I%9%/%i%s%V%i$N$_$r4^$`G[I[MQJ*7o$r:n$j(B, DES $B$K4p$E(B
      $B$$$?%Q%9%o!<%I%O%C%7%e$rIU2C%i%$%V%i%j$H$7$FJ,$1$F6!5k$9$k$N$G$9(B. 
      $B%Q%9%o!<%I$r%9%/%i%s%V%k$5$;$k4X?t$O(B, C $B%i%$%V%i%j$+$i(B libcrypt 
      $B$H8F$P$l$k(B($B$=$l$r<B9T$9$k(B C $B4X?t$,(B crypt $B$H$$$&L>A0$@$+$i$G$9(B)$BJL(B
      $B$N%i%$%V%i%j$X0\$5$l$^$7$?(B. FreeBSD 1.x $B5Z$S(B 2.0 $B$N%j%j!<%9A0$N(B
      $B%9%J%C%W%7%g%C%H$G$O(B, $B$=$N5,@)$5$l$F$$$J$$%9%/%i%s%V%i$O(B Nate
      Williams $B$K$h$C$F=q$+$l$?0BA4$G$J$$4X?t$r;H$C$F$$$^$9$,(B, $B<!$N%j(B
      $B%j!<%9$G$O(B RSA Data Security $B<R$N0lJ}8~%O%C%7%e4X?t$N(B MD5 $B$r;H$&(B
      $BJ}K!(B $B$KCV$-49$($i$l$^$7$?(B.  $B$3$l$i$N4X?t$O$I$l$b0E9f2=$r4^$s$G$$(B
      $B$J$$$?$a(B, $B9g=09q$+$i;}$A=P$7(B, $BB>$NB?$/$N9q$X;}$A9~$a$k$b$N$G$"$k(B
      $B$H$5$l$F$$$^$9(B.

MD5 $B$O=q$$$F$"$k$H$*$j!"0lJ}8~(Bhash$B4X?t$G$9!#(B
$B$G!"(BDES $B$N$h$&$J0E9f2=%=%U%H%&%'%"$K$D$$$F$O!"(BFreeBSD $B$N(B repository $B$,(B
$B$*$+$l$F$$$k(B USA $B$N5,@)$,$"$k$?$a!"$=$N$^$^$G$O9q30$K<+M3$KG[I[$G$-$J(B
$B$$$N$G!"(B(DES $B$K$D$$$F$O!"$$$^$d(B USA $B$+$i$H$C$F$-$F$bLdBj$J$$$H$$$&OC$,(B
$B0JA0$J$,$l$F$$$?$+$H;W$$$^$9$,(B)

      $B0lJ}(B, DES $B$K4p$E$$$?%Q%9%o!<%I%O%C%7%e4X?t$K4X$9$k:n6H$b$^$??J9T(B
      $BCf(B $B$G$7$?(B, $B$^$:(B, $B9g=09q5Z$SB>$N9q$G=q$+$l$?%3!<%I$NF14|$r$H$j$J(B
      $B$,$i(B, $B9g=09q$N30$G=q$+$l$?(B crypt $B$N$"$k%P!<%8%g%s$,;}$A9~$^$l$^(B
      $B$7$?(B. $B$=$7$F%i%$%V%i%j$O=$@5$5$l(B, $BFs$D$K$o$1$i$l$^$7$?(B. $B$9$J$o$A(B 
      DES libcrypt $B$O0lJ}8~%Q%9%o!<%I%O%C%7%e$r$*$3$J$&$N$KI,MW$J%3!<(B
      $B%I(B $B$N$_$r4^$_(B, $B$=$l$H$OJL$N(B libcipher $B$O<B:]$K0E9f2=$r$*$3$J$&$?(B
      $B$a$N%(%s%H%j%]%$%s%H$H$7$F@8@.$5$l$^$7$?(B.  $B%3%s%Q%$%k$5$l$?%i%$(B
      $B%V%i%j$KBP$7$F9q30$K;}$A=P$95v2D$rF@$k$N$r4JC1$K$9$k$?$a$K(B, $B%3!<(B
      $B%I$O$3$N$h$&$KJ,$1(B $B$i$l$?$N$G$9(B.

$B$H$7$F!"(BUSA $B$N(B repository $B$NB>$K!"(Bcrypto $B$H$$$&JL$N(B repository $B$r(B USA 
$B$N30(B ($BFn%"%U%j%+$G$7$?$C$1(B?) $B$K$*$$$F!"(BUSA $B$N30$K$O$=$l$rG[I[$9$k$h$&(B
$B$K$7$?$o$1$G!"(BCRYPT,SECURE $B$H$$$C$F$$$k$N$O%i%$%V%i%j(B libcrypt $B$^$o$j(B
+userland $B$b$7$/$O!"(Bcvs-crypto, src-sys-crypto $B$H$$$C$?L>$G(B cvsup $B$G$-(B
$B$k$b$N$N$3$H$G$7$g$&!#(B ($B$"$d$U$d$G$9$_$^$;$s$,(B)$B!#(B

RSA $B$N(B US$BHG!"(BRSARef$B!"9q:]HG(B $B$K$D$$$F$O!"(B

/usr/share/doc/ja/books/handbook/openssl.html $B$K(B

      OpenSSL $B$O(B, Secure Sockets Layer v2/v3 (SSLv2/SSLv3) $B$d(B 
      Transport Layer Security v1 (TLSv1) $B%M%C%H%o!<%/%;%-%e%j%F%#%W%m(B
      $B%H%3%k$HF1MM$NB?L\E*$J0E9f2=%i%$%V%i%j$rDs6!$7$^$9(B.

      $B$7$+$7$J$,$i(B, OpenSSL $B$K4^$^$l$k%"%k%4%j%:%`$N$$$/$D$+(B($BFC$K(B RSA 
      $B$d(B IDEA) $B$O(B, $B9g=09qFb(B, $B$=$NB>$NCO0h$K$*$$$F(B, $BFC5v$K$h$jJ]8n$5$l(B
      $B$F$$$^$9(B. $B$=$N$?$a(B, $BL5@)Ls$JMxMQ$O5v$5$l$^$;$s(B($BFC$K(B IDEA $B$O8=:_(B,
      FreeBSD $B$N(B OpenSSL $BG[I[$9$Y$F$K$*$$$FMxMQIT2DG=$G$9(B).  $B2C$($F(B, 
      $B0E9f2=%3!<%I$N9g=09q30$X$N;}$A=P$7$O(B($B8=:_$G$b(B)$B87$7$/@)8B$5$l$^$9(B. 
      $B$3$N$h$&$JM}M3$+$i(B, FreeBSD $B$K$O(B, $BMxMQ$5$l$kCO0h(B($B9g=09q(B/$BHs9g=09q(B), 
      $B$=$7$F(B RSAREF $B%i%$%;%s%9(B($B8e=R(B)$B$KBP1~$7$?(B, $B0[$J$k(B 3 $B<oN`$N%P!<%8%g(B
      $B%s$,MxMQ$G$-$k$h$&$K$J$C$F$$$^$9(B.

      $B9g=09q30$K=;$s$G$$$F(B, $B0E9f%3!<%I$r(B internat.FreeBSD.org
      ($B9g=09q308~$1$N9q:]HG(B Crypto $B%j%]%8%H%j(B)$B$+$i<hF@$7$?>l9g$K$O(B,
      RSA $B$r4^$`(B OpenSSL $B$r9=C[$9$k$3$H$K$J$j$^$9(B.

$B$H$$$&@bL@$,$"$j$^$9!#(B
*.jp.FreeBSD.org $B$J%5!<%P!<$b(B internat.FreeBSD.org $B$+$i$H$C$F$-$F$$$k(B
$B$H;W$$$^$9$,!"3NG'$7$?J}$,$h$$$G$7$g$&!#(B

$B>0!"(B
        $B$"$J$?$N9q$K$"$k$H;W$o$l$k(B,
        $B0E9f$NM"F~(B, $B;HMQ(B, $B:FG[I[$r@)8B$9$k9qFbK!$KCm0U$7$F2<$5$$(B.

$B$H$"$j$^$9$,!"F|K\$OM"F~$OLdBj$J$+$C$?$H;W$$$^$9$,!"M"=P$ODL;:>J$N>JNa(B
$B$@$C$?$+$G5,@)$,$"$k$N$G!"9q30$K(B FreeBSD $B$N(B CD $B$r;}$C$F$$$C$?$j$9$k>l(B
$B9g$O$I$&$$$&@)8B$,$"$k$+D4$Y$?J}$,K\Ev$O$h$$$G$9!#(B

$B$G!"(BMurakami $B$5$s$,>R2p$5$l$F$$$?(B RSA $B$N9-Js$rFI$s$G$b$o$+$k$N$G$O$J$$(B
$B$+$H;W$$$^$9$,!"(Bopenssl $B$K$b4^$^$l$k(B RSA $B$N%"%k%4%j%:%`$K$D$$$F$O(B

        $B:#$^$G$K=R$Y$i$l$?$h$&$K(B, $B9g=09qFb$G$O(B RSA $B$,FC5vEPO?$5$l$F$$(B
        $B$k$?$a(B, $B$=$N;HMQ5vBz%i%$%;%s%9$,$J$$8B$j(B, $B0lHLE*$JMxMQ$O@)8B$5(B
        $B$l$F$$$^$9(B.  $B$7$?$,$C$F(B, OpenSSL $B$N(B RSA $B%3!<%I$r9g=09qFb$K$*$$(B
        $B$F;HMQ$9$k$3$H$O5v$5$l$F$*$i$:(B, RSA $B%3!<%I$r4^$`(B OpenSSL $B$O(B, 
        $B9g=09qFb$N%_%i!<%5%$%H$K0\$5$l$F$$$k(BOpenSSL $B$+$i=|$+$l$F$$$^$9(B.
	RSA $B$NFC5v$O(B 2000 $BG/(B 9 $B7n(B 20 $BF|$K4|8B@Z$l$H$J$j$^$9$N$G(B,
        $B$=$N$H$-(B, $B9g=09qFb8~$1(B OpenSSL $B$K(B
        ``$B40A4$J(B'' RSA $B$N%3!<%I$rLa$9$3$H$,M=Dj$5$l$F$$$^$9(B.

$B$G!"$3$l$,FC5v$,@Z$l$kA0$K(B RSA security $B$,FC5v8"$rJ|4~$7$?$N$G!"(BUSA $BFb(B
$B$N(B repository $B$K$*$+$l$F$$$k(B openssl $B$N%=!<%9%3!<%I$r(B USA $B30$K$*$+$l$F(B
$B$$$k$b$N$HF1$8$/(B RSA $B9~$_$N$b$N$K$7$^$7$?$H$$$&OC$,!"(B

From: Kris Kennaway <kris@FreeBSD.org>
Subject: HEADS UP: RSA liberated
Date: Thu, 7 Sep 2000 01:26:03 -0700 (PDT)

> The native OpenSSL implementation of RSA has been activated by default in
> -stable, meaning rsaref and librsaUSA are no longer required, and new
> installs will be able to make use of openssh in ssh1 mode by default.

$B$G!"$D$^$j!"(BUSA $B30$K$$$l$P!"$3$l$^$G(B RSAINTL $B$rMxMQ$G$-$F$$$?$o$1$G!"(B
$B$=$l$r(B build $B$9$k$7$J$$$O(B USA_RESIDENTS $B$NCM$G7h$^$C$F$$$?$N$,!"(B
NO_RSAINTL $B$r8+$k$h$&$K$J$C$?$N$@$H?dB,$G$-$^$9!#(B
% $B!V$b$H$b$H$=$s$J$b$NMxMQ$7$F$$$J$$$h!W$H$$$&>l9g$O(B
% NO_RSAINTL=YES $B$K$9$l$P$h$$$+$H!#(B

$B$J$s$G$9$,!"OC$r85$KLa$7$F$3$l$^$G$O!"(BUSA$BFb$G$O(B FreeBSD $B$K$H$j$3$^$l$?(B 
openssl $B$G(B
1. RSA $B$rMxMQ$7$J$$(B

2. $BHs>&MQ$N>l9g(B:
        $B$7$+$7$J$,$i(B($B9,1?$K$b(B), RSA $B$NFC5v=j;}<T(B RSA Security)$B$O(B,
        ``RSA $B%j%U%!%l%s%9<BAu(B''$B%D!<%k%-%C%H(B(RASREF) $B$rDs6!$7$F$$$^$9(B. 
        $B$3$l$OHs>&MQMxMQ$r4^$`$$$/$D$+$N7ABV$G$NMxMQ$,2DG=$H$J$C$F$$$^(B
        $B$9(B($BHs>&MQMxMQ$NDj5A$K$D$$$F$O(B RASREF $B$N(B $B%i%$%;%s%9$r;2>H$7$F2<(B
        $B$5$$(B).

        $B$b$7$"$J$?$,(B RASREF $B%i%$%;%s%9$N>r7o$r8+$F(B, RASREF $B%5%]!<%HIU(B
        $B$-$G%=!<%9$+$i(B OpenSSL $B$r9=C[$7$?$$$H9M$($F$$$k>l9g$K$O(B,
        OpenSSL $B$r9=C[$9$kA0$K(B($B$?$H$($P(B make world $B$9$kA0$K(B), $B$^$:(B 
        /usr/ports/security/rsaref $B$K$"$k(B, rasref $B$N(B ports $B$r%$%s%9%H!<(B
        $B%k$7$J$1$l$P$J$j$^$;$s(B.  $B$b$7(B, $B$"$J$?$,%i%$%;%s%9>r7o$N>5Bz$K(B
        $B$D$$$F3N?.$,;}$F$J$$$J$i(B, $B@lLg2H$+$iK!E*$J=u8@$rF@$F$/$@$5$$(B.


3. $B%i%$%;%s%9$r$&$1$F$$$k>l9g(B:

        RSA security $B$+$i(B RSA $B$N%=!<%9%3!<%I$NE,@5$J%i%$%;%s%9$r9XF~$7(B
        $B$F$$$k%f!<%6$O(B, RSA $B$N%M%$%F%#%V%5%]!<%H$rF@$k$?$a$K(B
	$B@h$K=R$Y$?9g=09q308~$1$N9q:]HG(B OpenSSL $B$r;HMQ$G$-$^$9(B.

$B$H$$$&$N$,!"(BRSA $B$N(B US$BHG!"9q:]HG$H$$$C$?OC$K$J$k$+$H;W$$$^$9!#(B

handbook $B$r$6$C$HFI$s$G$o$+$k$N$O$3$&$$$C$?$H$3$m$G(B ($B$H$$$&$+<L$7$?$@(B
$B$1$G$9$M(B)$B!"$G$O(B MD5$B!"(BDES$B!"(BRSA $B$N%"%k%4%j%:%`$C$F$N$O$I$s$J$b$N$J$N(B? $B$H(B
$B$$$&OC$G$7$?$i!"$=$&$$$&OC$,$N$C$F$$$k0E9f$K4X$9$k=q@R$rC5$7$F$$$?$@$1(B
$B$PNI$$$H;W$$$^$9$7!"$=$l0J30$N$J$K$+$@$H$$$&$3$H$G$"$l$P!"6qBNE*$K=q$$(B
$B$F$f$1$PC/$+$,@bL@$7$F$/$l$k$N$G$O$J$$$G$7$g$&$+!#(B
