Open GoogleCodeExporter opened 8 years ago
I consider this a very nice mechanism for securing the "leap of faith" when a
host is
first encountered. We systematically put SSHFP RRs into our DNS zone, and our
zones
are DNSSEC-signed, so this would be immediately useful to me (provided that our
trust
anchor can be configured somehow).
--
Simon.
Original comment by simon.le...@gmail.com
on 4 Jan 2009 at 1:34
Original issue reported on code.google.com by
kenny@the-b.org
on 3 Nov 2008 at 8:02