At 5:06 PM -0400 9/6/01, Michael Young wrote:
Although the current packet ordering rules don't address certificate
revocation, I'd suggest that a prudent ordering would put each after
its target. This would an even stronger hint. I note that neither
PGP6.5 nor GnuPG produces this ordering. At first glance, it appears
that they use order of arrival. [Just the same, would anyone object
to suggesting this ordering in section 10?]
Yes. A change to the standard that requires all the implementations to
change is not desirable. I don't see what good it does for them other than,
"You'll thank me for this later." Telling them how to write their programs
adds complexity, and complexity lessens security.
Jon