Re: SV: ip6 mechanism + signing messages

On Wed, 2004-03-03 at 02:23, Lars Dybdahl wrote:

On another note, to extend SPF wouldn't it be
a good feature to add something like:
example.com IN TXT "v=spf1 sig:sigserver.example.net"

The 'sigserver.example.net' box could then run
a whois like directory which contains PGP (or other)
signature methods just like the current pgp keyservers.


Maybe another kind of TXT record would be the right way to do it?


Or better yet, just put the key in DNS using the KEY RR provided by
DNSSEC.  Then you don't have to call out to any external server using a
different protocol, you just continue using DNS.

-- 
Dustin D. Trammell
Vulnerability Remediation Alchemist
Citadel Security Software, Inc.

<Prev in Thread]	Current Thread	[Next in Thread>
ip6 mechanism + signing messages, Jeroen Massar Re: ip6 mechanism + signing messages, Aredridel Re: ip6 mechanism + signing messages, David Woodhouse RE: ip6 mechanism + signing messages, Jeroen Massar Wanted: ip6 mechanism definition, Meng Weng Wong Re: Wanted: ip6 mechanism definition, Jeremy T. Bouse SV: ip6 mechanism + signing messages, Lars Dybdahl Re: SV: ip6 mechanism + signing messages, Dustin D. Trammell <=

Previous by Date:	RE: SPF Server, Hallam-Baker, Phillip
Next by Date:	RE: SPF Server, Seth Goodman
Previous by Thread:	SV: ip6 mechanism + signing messages, Lars Dybdahl
Next by Thread:	ANNOUNCE: Mail::SRS version 0.29, Shevek
Indexes:	[Date] [Thread] [Top] [All Lists]