It's also important to have a PKI that does not require the public part. So while having OTR FP in dns (a la SSHFP) is a reasonable option, I think publishing definitely and maybe lookups should be off by default.
It might make sense to write a brief architecture document with the requirements, approaches and chosen next solution. This seems pretty tricky (given the semi-anonymity requirement). _______________________________________________ OTR-users mailing list [email protected] http://lists.cypherpunks.ca/mailman/listinfo/otr-users
