Hiya,
Good to see things moving along, thanks. On 9/17/24 06:05, Joseph Salowey wrote:
There has been some discussion of ECH proxy on the list, but something similar has already been discussed as pointed out in the thread and there does not appear to be consensus to make this sort of change in this version.
That's the correct call. As I read the discussion on the list, it seemed to involve basically breaking ECH, so let's just not do that. The idea also seemed to involve a bit of a maybe unintended side-swipe at DNSSEC, and we shouldn't make that worse either;-) The server code for handling split-mode backend accept confirms is also pretty trivial and not a reason to change anything. Cheers, S. PS: If anyone would like to play with any kind of ECH split-mode tests/trials, do ping me off-list, esp. if you'd be willing to play the client-facing part of such a game.
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
