Hello list! Georg Lukas noted that section 4.1 says, in the context of XMPP, to use to='xmpp23.hosting.example.net' in the stream header, as that is the "functional equivalent" of SNI in XMPP. However, that conflicts with the current semantics of 'to' being the service domain name to the server host name. That will break many, if not all, deployed servers. The server should know what certificate to use for the indicated domain name.
http://tools.ietf.org/html/draft-ietf-dane-srv-14#section-4.1 -- Kim "Zash" Alvefur
signature.asc
Description: OpenPGP digital signature
_______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
