DNSSEC mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Wesley Griffin <wgriffin@tislabs.com>
Cc: dnssec@cafax.se
From: Simon Josefsson <simon+dnssec@josefsson.org>
Date: Fri, 06 Jul 2001 22:23:34 +0200
Delivery-Date: Sun Jul 8 21:39:21 2001
In-Reply-To: <20010706155831.A5167@tislabs.com> (Wesley Griffin's message of"Fri, 6 Jul 2001 15:58:37 -0400")
Sender: owner-dnssec@cafax.se
User-Agent: Gnus/5.090004 (Oort Gnus v0.04) Emacs/21.0.103
Subject: Re: SSH keys in DNS

Wesley Griffin <wgriffin@tislabs.com> writes:

> I thought that perhaps the way to proceed would be to request 2 protocol
> values from IANA: an SSHv1 protocol value and SSHv2 protocol value. But
> I'm wondering if since it is still the SSH protocol, just a different
> version, whether this is the appropriate method.
> 
> Should there be a protocol version octect in the DNS KEY record?
> I don't know the best approach is, but would like to know what others
> think.

Another solution is to encode the protocol version into the domain,
e.g.:

_ssh2.server.example.org

This approach seem to come up in many situations nowadays.  Does
anyone have any opinions if the generic approach is good or bad?

Follow-Ups:
- Re: SSH keys in DNS
  - From: Roy Arends <Roy.Arends@nominum.com>

References:
- SSH keys in DNS
  - From: Wesley Griffin <wgriffin@tislabs.com>

Prev by Date: SSH keys in DNS
Next by Date: Re: SSH keys in DNS
Prev by thread: SSH keys in DNS
Next by thread: Re: SSH keys in DNS
Index(es):
- Date
- Thread

Home | Date list | Subject list