We could just do this correctly and use SRV records to point to keyserver servers running over TLS. The keyserver can do whatever local canonicalisations that are required. The SMTP server could even be performing this role on a different port. That way you only have to enter the canonicalisation rules once.
This also gets rid of the complaints about being able to walk the zone. -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: [email protected] _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
