[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints

To: IESG Scretary <iesg-secretary@ietf.org>
Subject: Re: Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints
From: Thomas Narten <narten@us.ibm.com>
Date: Thu, 07 Aug 2003 12:13:24 -0400
Cc: Internet Engineering Steering Group <iesg@ietf.org>
In-reply-to: Message from iesg-secretary@ietf.org of "Wed, 16 Jul 2003 05:37:41 EDT." <200307160937.FAA23330@ietf.org>

>                       Yes  No-Objection  Discuss  Abstain
> Thomas Narten        [   ]     [   ]     [ X  ]     [   ]

   The approach suggested here shifts the burden of key checking from
   each user of a machine to the key checking performed by the
   administrator of the DNS recursive server used to resolve the host
   information.  Hopefully, by reducing the number of times that keys

Don't understand. Key checking is performed by software, not the
administrator...

IANA section should reference 2434 definitions, since it uses them.

Mail on namedroppers from Mark Andrews on May 13 suggesed a wording
tweak; this hasn't happened, according to the date of the draft.

Follow-Ups:
- Re: Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints
  - From: Rob Austein <sra@hactrn.net>

References:
- Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints
  - From: IESG Secretary <iesg-secretary@ietf.org>

Prev by Date: no IPR section in PS documents
Next by Date: Evaluation: draft-ietf-ipsec-ciph-aes-ctr-05.txt
Previous by thread: Re: Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints
Next by thread: Re: Evaluation: draft-ietf-secsh-dns - Using DNS to securely publish SSH key fingerprints
Index(es):
- Date
- Thread