From mboxrd@z Thu Jan 1 00:00:00 1970 Message-Id: <200006151851.OAA26985@cse.psu.edu> Subject: [9fans] Redistribution From: "rob pike" Date: Thu, 15 Jun 2000 14:51:35 -0400 To: 9fans@cse.psu.edu MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Topicbox-Message-UUID: beb3bcc8-eac8-11e9-9e20-41e7f4b1d025 Several people have asked about how the license affects their ability to make the sources available on their own sites, such as through cross-referencing services or as archives on non-Plan 9 systems that present the source for browsing. I talked to our lawyers to make sure I understood the rules, and I did. The rules are simple: 1. Everyone who sees the material provided by the service must have agreed to the terms of the license. The simplest way to do this is, as we did in the distribution, is to require people to click a check box agreeing to the license. The license should be made available to users so they can read it before clicking. 2. The export restrictions on cryptography are nasty to implement. We worked quite hard to do reverse DNS and all that stuff to determine the country of origin - and you need to do a lot more than that to meet the U.S. Commerce department requirements. The easiest way to deal with the issue is to avoid presenting the cryptographic code, and that's why I recommend. If all your users are known to you, that is, if you don't have outside visitors to your site, this is not an issue for American sites. Reiterating, if you make the crypto sources available to outsiders without these restrictions in place, you are violating Federal law. To avoid this, just don't make the crypto sources available, but require people to get them from us. -rob