[ppml] mail auth proposals, was Re: the "other"...
Randy Bush
randy at psg.com
Tue Apr 10 12:40:56 EDT 2007
someone has pointed out to me that the current draft of the pgp
proposal says
> ARIN shall accept PGP-signed communications, validate that a
> chain of trust not longer than five steps exists between the
> signing key and the ARIN host master role key...
this is not wise. with pgp, i would not trust anything more than
one hop from the key on file with the contract. pgp is not x.509.
randy
More information about the ARIN-PPML
mailing list