[dns-operations] thoughts on DNSSEC

Warren Kumari warren at kumari.net
Wed Jul 25 15:22:27 UTC 2012

On Jul 25, 2012, at 3:36 AM, Francis Dupont wrote:

> In your previous mail you wrote:
>> What about always using both types of DS record?  Why does everyone
>> publish both SHA-1 and SHA-256 digests?  RFC 4509 is more than 6
>> years old.
> => in fact perhaps it is the right time to jump to SHA-256 only?

Somewhat related: http://tools.ietf.org/html/draft-crocker-dnssec-algo-signal-07

Wouldn't it be nice to know who supports what, so these questions are easier to answer in the future?!


> Regards
> Francis.Dupont at fdupont.fr
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
> dns-jobs mailing list
> https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

American Non-Sequitur Society; 
we don't make sense, but we do like pizza!

More information about the dns-operations mailing list