On 1/7/25 5:29 AM, Richard Clayton wrote:
In message <33b02f1f-9567-41a1-a23a-61b370213...@zone.ee>, Taavi Eomäe
<taavi=40zone...@dmarc.ietf.org> writes
> Are you against DNS (and by extension its security mechanisms) being
> used for DKIM in general? And not that you would find it valuable to
> know if the public keys were fetched in a way that their
> authenticity/integrity is known?
Hard to give a clear yes or no to the second question because of the
negative...
I can't see any value in knowing how the signer of a message obtained a
key ... on my system it fetches the private key from a file and never
uses the public key at all -- so DNSSEC is not at all relevant at that
end of the connection.
This issue has nothing to do with the private key.
Mike
_______________________________________________
Ietf-dkim mailing list -- ietf-dkim@ietf.org
To unsubscribe send an email to ietf-dkim-le...@ietf.org
