On Fri, Oct 22, 2004 at 10:22:36AM -0400, Jeff Macdonald wrote:
|
| Actually I'd like to see it be a 3 stage process.
|
| 1) What to put into DNS (policy records), and ideally one DNS record to
| handle everything.
|
| 2) 2821
|
| 3) 2822
|
| For #1, the single record can point to other records if needed. But for
| the small time operator he should be able to use a single record and
| still fit in the UDP limit.
yes, that is what i am working toward. keep in mind the
2822 may be initially done with PRA but should be superseded
by DK or other crypto when that matures.