Hello everyone,
after reading blog post What To Use Instead of PGP [1] and some
reactions on Mastodon after it [2], I were thinking about two things.
1) we might want SSHFP + DNSKEY records for SSH public keys, similar to
RFC 7929 OPENPGPKEY and RFC 8162 SMIMEA records. SSHFP is great because
The WALLET RRtype is already assigned as a DNS parameter
https://www.iana.org/assignments/dns-parameters/WALLET/wallet-completed-template
We are trying to get consensus on the operational usage of that RRtype.
The TXT record fallback is also included as well as reverse lookup
mechanisms.
On Sun,
Why don't we use URI instead? Maybe with prefix _wallet? Is introduction
of a new type necessary, when it seems like scheme:address format anyway?
On 18/09/2024 17:44, Dave Lawrence wrote:
Joe Abley writes:
Would it be recommended to do a proposal that use either RRtype
(TXT or WALLET) or choo
>I have found there is no need to link to different library. What is
>needed is just different *configuration*. I found a very simple method
>to share with you:
>
>Use OPENSSL_CONF environment to point to conf file containing:
>
>.include = /etc/ssl/openssl.cnf
>[evp_properties]
>rh-allow-sha1-sign
