On 1/7/25 5:29 AM, Richard Clayton wrote:
In message <[email protected]>, Taavi Eomäe
<[email protected]> writes
> Are you against DNS (and by extension its security mechanisms) being
> used for DKIM in general? And not that you would find it valuable to
> know if the public keys were fetched in a way that their
> authenticity/integrity is known?
Hard to give a clear yes or no to the second question because of the
negative...
I can't see any value in knowing how the signer of a message obtained a
key ... on my system it fetches the private key from a file and never
uses the public key at all -- so DNSSEC is not at all relevant at that
end of the connection.
This issue has nothing to do with the private key.
Mike
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
