Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning)

ietf-smtp

Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning)

2014-06-16 14:36:24

Right, and my desktop at work as well as most of my personal servers are
running the last Ubuntu LTS release (precise) from Spring 2012 and don't
have it.  Some things upgrade slowly.  I don't have any knowledge one way
or the other on how much of a burden it would be for the open source MTAs
and their admins, etc.


DNS client software is largely indifferent to rrtypes.  You ask for
type N, it sends off the request hands you back the type N records.
It's the application's job to parse it up.

Probably less work than getting DNSSEC up, I guess.


Way less, since DNSSEC requires significant client library upgrades.

R's,
John

_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-smtp] certificate pinning, (continued) Re: [ietf-smtp] certificate pinning, Peter Bowen Re: [ietf-smtp] certificate pinning, Evert Mouw Re: [ietf-smtp] certificate pinning, Peter Bowen Re: [ietf-smtp] certificate pinning, Evert Mouw Re: [ietf-smtp] certificate pinning, Tony Finch Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Claus Assmann Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), John Levine Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), John Levine Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), John Levine <= Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Mark Andrews Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), John Levine Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Mark Andrews Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Tony Finch Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), John Levine Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Peter Bowen Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Mark Andrews Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Murray S. Kucherawy Re: [ietf-smtp] certificate pinning, Brandon Long

Previous by Date:	Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long
Next by Date:	Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Mark Andrews
Previous by Thread:	Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long
Next by Thread:	Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Mark Andrews
Indexes:	[Date] [Thread] [Top] [All Lists]