To:
Olafur Gudmundsson <ogud@ogud.com>
Cc:
Havard Eidnes <he@runit.no>, <dnssec@cafax.se>, <sra@hactrn.net>
From:
Jakob Schlyter <jakob@crt.se>
Date:
Thu, 26 Apr 2001 00:04:51 +0200 (CEST)
Delivery-Date:
Thu Apr 26 08:16:43 2001
In-Reply-To:
<5.1.0.14.0.20010425103719.05381120@localhost>
Sender:
owner-dnssec@cafax.se
Subject:
Re: Keys at apex problem - New PUBKEY RR?
On Wed, 25 Apr 2001, Olafur Gudmundsson wrote: > >$origin east.isi.edu. > >@ IN SOA ... > >@ NS ... > >@ A 38.245.76.2 > >@ KEY <zone key> > >_ssh._tcp SRV 0 0 @ > >_ssh._tcp KEY <ssh host key material> > > or it could be > _ssh._tcp SRV 0 0 ssh-key-name > and key would be stored at ssh-key-name it that case we would overload the SRV record as a 'application key owner name' pointer. is that really what we want? using _ssh._tcp KEY seems cleaner, but I don't really see why we would need the protocol in the owner name. do applications have different keys for different protocols? if so, this could be useful. /Jakob -- Jakob Schlyter <jakob@crt.se> Network Analyst Phone: +46 31 701 42 13, +46 70 595 07 94 Carlstedt Research & Technology