Am 2012-09-05 18:14, schrieb Tom Yu: >> Agreed but this does not solve understanding the contradiction in the >> RFCs. I can't tell whether DNSSEC is deployed in our company. > > The text in RFC 1964 and RFC 2743 about canonicalization of hostnames > no longer reflects the general consensus about using insecure name > services for doing that canonicalization.
Thanks! That's a pity that is not stated somewhere in an updated RFC. One has to chase that important information. Mike ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
