ietf-mailsig
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: SSP - policy location compatibility with DK

2005-07-29 12:13:31
from [Michael Thomas] [Permanent Link] 

Hector Santos wrote:



----- Original Message -----
From: "Arvel Hathcock" <arvel(_at_)altn(_dot_)com>



I can completely agree that the policy be located where the current SSP
draft states - _policy._domainkey.<domain>.  However, I would like to
propose (no surprise) that there be a "informative implementation note" or
whatever the appropriate vehicle is to say something like this:

"In the event that an SSP record can not be located at
_policy._domainkey.<domain> a verifier SHOULD look for the SSP record at
_domainkey.<domain>."


I agree.  One location.

Why not just <domain>?


Because it conflicts with every other thing that wants to put an
semantically overloaded TXT record at the top level? At least
by claiming a subtree as our own you avoid that congestion,
and the possibility of slagging the MTU.

      Mike
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: DKIM KEY SSP Override Option [was Re: The cost of choices], Michael Thomas
Next by Date:  RE: SSP - 3rd party Signers - Definition/Usage, Hallam-Baker, Phillip
Previous by Thread:  Re: SSP - policy location compatibility with DK, william(at)elan.net
Next by Thread:  SSP - flags field, Arvel Hathcock
Indexes:  [Date] [Thread] [Top] [All Lists]