On Thu, May 11, 2017 at 11:46:10PM +0000, Zach Shepherd wrote: > If this sort of "stateless" server is acceptable, why do we require > 128 bits of entropy for the token? CAB Forum Baseline Requirements.
> * - If stateless http clients are acceptable, why not stateless DNS > clients? I think allowing administrators to set a single TXT record > containing the account key thumbprint and have it be re-used for > multiple challenges would make it much more feasible to use the DNS > challenge in environments where DNS management access is tightly > controlled. Again, CAB Forum Baseline Requirements. -Ilari _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
