On Sat, Jun 18, 2016 at 06:15:33PM +0800, Aaron Zauner wrote:
> > You're starting to invent DANE. There are now 1181 DANE SMTP domains
> > with LE certificates in my survey...
>
> I meant with MTA-STS. They do have public key pinning as a future work item
> already?
Key pinning is most unlikely to be practical with STS. It is
probably best to not specify it, to keep the spec simple and to
reduce the chance of domains shooting themselves in the foot.
--
Viktor.
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
