[ppml] mail auth proposals, was Re: the "other"...

Randy Bush randy at psg.com
Tue Apr 10 12:40:56 EDT 2007

someone has pointed out to me that the current draft of the pgp
proposal says

> ARIN shall accept PGP-signed communications, validate that a
> chain of trust not longer than five steps exists between the
> signing key and the ARIN host master role key...

this is not wise.  with pgp, i would not trust anything more than
one hop from the key on file with the contract.  pgp is not x.509.


More information about the ARIN-PPML mailing list