google's solera 2018~2022 are no longer accept new record. solera ct log
is sharded by notafter day of incoming certificates, so only log able to
use currently be 2023 (assume 90 day certificate)
when I ran you client for onion-csr without having hosted onion hidden
service, server returned caa servfail, not sure this is right response
for such (not yet hosted) domain: NXdomain or dedicated error code looks
better.
not sure how one can add a format in first layer like in 5.3 without
breaking old tor client implementations. could make a hidden service
with caa-critical online?
P.S didn't notice you already posted v 02 of this draft.
2023-04-21 오전 7:04에 Q Misell 이(가) 쓴 글:
Hi all,
Thanks for all your feedback over my draft. I've incorporated your
comments into a new draft, and published this.
I've also finished my reference implementation of the draft, more
details available at https://acmeforonions.org. I'd be delighted if
you'd try it out and let me know what you think.
Thanks,
Q
_______________________________________________
Acme mailing list
Acme@ietf.org
https://www.ietf.org/mailman/listinfo/acme
_______________________________________________
Acme mailing list
Acme@ietf.org
https://www.ietf.org/mailman/listinfo/acme