[bskari]

b) Ladar talked about this in an interview with Leo Laporte from October. He says "I looked into [using PFS]. The version of OpenSSL I was running in production at the time didn't support Diffie Hellman. That's a newer addition to the SSL protocol. I did support it in my development tree and I thought about upgrading, but it really came down to two things. One, I was worried I could get hit with an obstruction of justice or a contempt of court order if I did that knowing with full knowledge what they were trying to do ... Here's the other problem. Even if you're offering perfect forward security, very few clients would have taken advantage of it, particularly mail clients."

The discussion starts at about 32:40. http://twit.tv/show/triangulation/125