Apart from that I think we should start a (separate) effort to determine
where we go from here. For the most part 2048 length keys seem not to be
a problem in the wild at this time. On the other hand, given the speed
(or lack thereof) involved in working groups generating useful output,
if we start now (for some definition of now) we should (hopefully) have
a solution before 2048 keys are at risk.
The only problem I'm aware of is the 512 byte UDP DNS packet size. Is
anyone aware of actual stats on how often larger packets fail?
The IETF is not useful here. The IETF DNS crowd swears that it's not a
problem at all and anyone who believes otherwise is stupid.
R's,
John
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html