[144975] in cryptography@c2.net mail archive
Re: Possibly questionable security decisions in DNS root management
daemon@ATHENA.MIT.EDU (John Gilmore)
Tue Oct 20 22:47:41 2009
To: Ben Laurie <benl@google.com>
cc: John Gilmore <gnu@toad.com>, cryptography@metzdowd.com
In-reply-to: <1b587cab0910201024r51f7e3d4h9449779ef34b615c@mail.gmail.com>
Date: Tue, 20 Oct 2009 14:44:48 -0700
From: John Gilmore <gnu@toad.com>
> ts a fun story, but... RFC 4034 says RSA/SHA1 is mandatory and DSA is
> optional.
I was looking at RFC 2536 from March 1999, which says "Implementation
of DSA is mandatory for DNS security." (Page 2.) I guess by March 2005
(RFC 4034), something closer to sanity had prevailed.
http://rfc-editor.org/rfc/rfc2536.txt
http://rfc-editor.org/rfc/rfc4034.txt
John
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
