On Mon, 4 May 2015, at 07:37 AM, Viktor Dukhovni wrote:
>
> Really, nobody has any comments? Surely the document is not that
> perfect. :-) If at all possible, please provide feedback soon!
>
> --
> Viktor.
Hi,
Perhaps it's just me, but doesn't this section have a rather obvious error in
it ?
2.1. Example TLSA record
In the example TLSA record below:
_25._tcp.mail.example.com. IN TLSA PKIX-TA Cert SHA2-256 (
E8B54E0B4BAA815B06D3462D65FBC7C0
CF556ECCF9F5303EBFBB77D022F834C0 )
The TLSA Certificate Usage is DANE-TA(2), the selector is Cert(0) and
the matching type is SHA2-256(1). The last field is the Certificate
Association Data Field, which in this case contains the SHA2-256
digest of the server certificate.
---- Ian Maddison
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
