Yes, it is rather long... Here's a couple more RFCs related to the DNS
KEY/SIG RR's as well:
http://www.faqs.org/rfcs/rfc2536.html (DSA)
http://www.faqs.org/rfcs/rfc3110.html (RSA/SHA-1)
As far as the max length of a TXT record goes, I'm not sure. I'll see
if I can dig that up somewhere. Something to note though, the FreeS/WAN
guys tackled this one a while back, and ended up using KEY RR's for key
exchange (most notably for the opportunistic connection method). I've
personally used the KEY RR for VPN key exchange (via a friend's project,
http://www.leetnet.org), and have published 2048 bit keys with it.
---
Dustin D. Trammell
Vulnerability Remediation Alchemist
Citadel Security Software, Inc.
-----Original Message-----
From: Matthew [mailto:matthew(_at_)syrah(_dot_)us]
Sent: Tuesday, October 07, 2003 5:32 PM
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: [spf-discuss] Why not just use S/MIME or GPG signatures?
Thanks for the link! (Wow, it's a really long RFC!)
Does anyone know how many bytes can be delivered in a TXT
record?
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)½§Åv¼ð¦¾Øß´ë�ù1I�í-»F�qx(_dot_)com