Hector Santos <hsantos(_at_)isdg(_dot_)net> wrote:
If a TLSA record allows for an server authorized association of the
CN=secure.winserver.com with the connecting host name, then I can see some
worth in this dane-smtp proposal - from the client POV seeking a higher level
Of course you can do that. You just have to ensure the names match, i.e.
the MX target and TLSA owner have to match the certificate.
The final version of this draft will probably have how-to appendix along
the lines of draft-ietf-dane-protocol appendix A.
f.anthony.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
East Viking, North Utsire, South Utsire: Northerly or northwesterly 4 or 5,
increasing 6 for a time. Moderate, occasionally rough. Fair. Good.