In article <[email protected]> you write: >-=-=-=-=-=- >-=-=-=-=-=- > > >On Apr 5, 2015, at 6:22 PM, Paul Hoffman <[email protected]> wrote: > >> Greetings again. The discussion about exact-match and discovery in >> draft-ietf-dane-openpgpkey >has been useful for finding out what the use cases are, and it's time to >settle on a design that >works for most people (we're never going to make everyone happy). > >How can we possibly do that without real experience in the field?
Publish the thing as experimental and be done with it. It's not an accident that SMTP and DNS have both been around for 30 years and nobody has ever published mailbox info in the DNS. It's a really hard problem with no good solution. Every approach has security problems (address guessing), doesn't scale (static zones particularly if they include address variants), and/or works in ways the DNS crowd doesn't like (dynamic replies to base32 requests.) Throughout this argument, there's been nothing new. It's evident that a few people want to try retrieving keys for mail messages from the DNS. This allows a way to experiment with it. R's, John _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
