Automatic key verification / CERT in DNS / RFC4398

Werner Koch wk at
Fri Apr 7 22:56:02 CEST 2006

On Thu, 6 Apr 2006 13:21:52 -0500, Brad Knowles said:

> that server handles -- instead of just handing out NS, MX and A 
> records which aren't likely to fill an entire 512-byte UDP packet, 
> now you have to add a whole bunch of crypto key data which is likely 
> to greatly expand the amount of information you have to provide as a 
> part of each transaction.

Recall that requesting an actual key needs to be done only once in a
while - depends on how often you feel the need to check for



More information about the Gnupg-devel mailing list