[prev in list] [next in list] [prev in thread] [next in thread]
List: openssh-unix-dev
Subject: Re: Small issue with DNSSEC / SSHFP
From: Philip Homburg <pch-openssh () u-1 ! phicoh ! com>
Date: 2015-06-23 13:09:04
Message-ID: m1Z7Nwo-0000DMC () stereo ! hq ! phicoh ! net
[Download RAW message or body]
In your letter dated Mon, 22 Jun 2015 17:24:01 -0700 you wrote:
>It's probably of minor importance, since DNS fingerprinting is not the best
>primary mechanism to verify a server's host key fingerprint.
My experience is that my sites do not have any sensible policy of publishing
ssh fingerprints and quite a few admins would quite like to use DNSSEC
validated fingerprints.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic