Am 02.04.20 um 16:55 schrieb Elmar Stellnberger:
Am 02.04.20 um 11:15 schrieb Lewis Yarema:
But we have the atea tool now. Haven't we? You can use it to download
via DNSSEC/DANE. And I believe Elmar is going to continue support for
it. Debian itself can always support DANE as long as there ar
There are a few reasons why I believe that DANE / TLSA DNS RR answers
are quite trustworthy:
* DNS responses are much faster than establishing a TCP connection
(1.5RTT), usually only about 40ms also because DNS servers tend to be
near the user if not provided by the ISP while the server you
On 4/3/20, Elmar Stellnberger wrote:
>>There are a few reasons why I believe that DANE / TLSA DNS RR answers
>> are quite trustworthy:
Yes, DANE / TLSA DNS RR answers seem trustworthy. What I don't
consider trustworthy is the clear-text traffic between the client and
the DNSSEC enabled resol
3 matches
Mail list logo
