[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DS Algorithm selection and SHA1 deprecation (Was: Re: Review of draft-ietf-dnsext-ds-sha256-01.txt)

To: namedroppers@ops.ietf.org
Subject: Re: DS Algorithm selection and SHA1 deprecation (Was: Re: Review of draft-ietf-dnsext-ds-sha256-01.txt)
From: Andrew Sullivan <andrew@ca.afilias.info>
Date: Tue, 6 Dec 2005 15:23:38 -0500
In-reply-to: <a06200707bfbb99d7e466@[10.31.32.108]>
Mail-followup-to: namedroppers@ops.ietf.org
References: <sdzmne5cid.fsf@wes.hardakers.net> <7.0.0.10.2.20051206131847.03b089c0@nominum.com> <6.2.5.6.2.20051206142022.02df54e0@ogud.com> <a06200707bfbb99d7e466@[10.31.32.108]>
Reply-to: Andrew Sullivan <andrew@ca.afilias.info>
User-agent: Mutt/1.5.9i

On Tue, Dec 06, 2005 at 02:47:13PM -0500, Edward Lewis wrote:
> Is SHA-1 better than no understandable DS 
> records?  (That's the question an operator of a 
> resolver needs to ask themself.)

That was exactly my worry when I read the previous draft, and I think
this one has enough wiggle room in it to allow the operator to make
the right choice (yet still suggests really strongly that SHA-1 is on
the whole probably better to leave behind).

A

-- 
----
Andrew Sullivan                         204-4141 Yonge Street
Afilias Canada                        Toronto, Ontario Canada
<andrew@ca.afilias.info>                              M2P 2A8
                                        +1 416 646 3304 x4110


--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

Follow-Ups:
- Re: DS Algorithm selection and SHA1 deprecation
  - From: Wes Hardaker <hardaker@tislabs.com>

References:
- Review of draft-ietf-dnsext-ds-sha256-01.txt
  - From: Wes Hardaker <hardaker@tislabs.com>
- Re: Review of draft-ietf-dnsext-ds-sha256-01.txt
  - From: Mike StJohns <Mike.StJohns@nominum.com>
- DS Algorithm selection and SHA1 deprecation (Was: Re: Review of draft-ietf-dnsext-ds-sha256-01.txt)
  - From: Ólafur Guðmundsson /DNSEXT co-chair <ogud@ogud.com>
- Re: DS Algorithm selection and SHA1 deprecation (Was: Re: Review of draft-ietf-dnsext-ds-sha256-01.txt)
  - From: Edward Lewis <Ed.Lewis@neustar.biz>

Prev by Date: Re: one review of the DS thingy by WestWes
Next by Date: Re: DS Algorithm selection and SHA1 deprecation
Previous by thread: Re: DS Algorithm selection and SHA1 deprecation (Was: Re: Review of draft-ietf-dnsext-ds-sha256-01.txt)
Next by thread: Re: DS Algorithm selection and SHA1 deprecation
Index(es):
- Date
- Thread