Re: [Users] linuxsecurity article

From: Henry Spencer (henry_at_spsystems.net)
Date: Thu Aug 08 2002 - 22:30:18 CEST

• Next message: Mat Harrison: "Re: [Users] Assistance Please"
• Previous message: Vasiliy Boulytchev: "[Users] linuxsecurity article"
• In reply to: Vasiliy Boulytchev: "[Users] linuxsecurity article"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Thu, 8 Aug 2002, Vasiliy Boulytchev wrote:
> Can someone elaborate more on the article at linuxsecurity.com?
> http://www.linuxsecurity.com/articles/cryptography_article-5484.html

Please be specific: what sort of elaboration do you want?

The DNS KEY record is currently available for a variety of uses. Due to
some technical complications, this was arguably a bad design. There is a
proposal on the table to restrict KEY to DNS internal purposes, and if you
ask "what should other users do?", the answer is "let them write RFCs" --
they have to start from scratch, inventing another solution and trying to
get support for it into name servers all over again. FreeS/WAN, which
uses KEY for opportunistic encryption, is understandably not happy.

                                                          Henry Spencer
                                                       henry_at_spsystems.net

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Mat Harrison: "Re: [Users] Assistance Please"
• Previous message: Vasiliy Boulytchev: "[Users] linuxsecurity article"
• In reply to: Vasiliy Boulytchev: "[Users] linuxsecurity article"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Aug 09 2002 - 01:19:40 CEST