It appears that Alessandro Vesely <vesely(_at_)tana(_dot_)it> said:
I think it's a terrible idea both because it puts the keys in the wrong
place and the reasons you gave, extensions are optional which means
not implemented.
I'm not clear why a domain's MX would be the wrong place.
Because you can't tell the user's relation to the domain. Would you
want Google to be the authoritative source of keys for every gmail
user? Apollo Global Management for every Yahoo and AOL user?
Personally, as a passive-aggressive mail system operator, the only keys
my MX would publish would be proxy ones that let my MTA decode the
mail and do spam and malware filtering. If my users don't like that,
they can manage their own fripping keys.
R's,
John
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp