Op 08-01-13 08:21, Jakob Schlyter schreef: > On 20 dec 2012, at 18:17, Warren Kumari <[email protected]> wrote: > >> Please read the document and state your opinions either for or against >> adoption (with reasoning why!) on the mailing list. > > I support adoption - this is important work.
Me too. The fact that RFC3207 does not clearly describe how a server should be authenticated leaves room for MitM-abuse and is an issue that needs to be addressed. I like the idea of fixing it with DANE, especially since many certificates used in 'STARTTLS' today, are self-signed certificates. -- Marco _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
