[mailop] OpenPGP WKD URL
Klaus Ethgen
klaus+gnupg at ethgen.ch
Fri Feb 14 13:25:36 CET 2025
Hi,
Am Fr den 14. Feb 2025 um 8:02 schrieb Werner Koch via Gnupg-users:
> with browser vendors not support basic DNS lookup features in their
> browsers. Using SRV records would have been the Right Thing.
Do I get something wrong? That WKS system is used by Gnupg and not by a
Browser...?
Browsers have made many bad decissions with DNS in the past. The worst
is to not support TLSA records. But the CAs seems to have too much
interest in browsers not supporting TLSA.
That is one reason why I have only Cacert in use for my domain(s). On
the other hand, that makes Gnupg not been able to use WKS to resolve my
keys. That is why I use the delegated subdomain.
Gruß
Klaus
--
Klaus Ethgen http://www.ethgen.ch/
pub 4096R/4E20AF1C 2011-05-16 Klaus Ethgen <Klaus at Ethgen.ch>
Fingerprint: 85D4 CA42 952C 949B 1753 62B3 79D0 B06F 4E20 AF1C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 688 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20250214/e4047fd5/attachment.sig>
More information about the Gnupg-users
mailing list