Dňa 23. decembra 2023 21:20:22 UTC používateľ John Levine via mailop <mailop@mailop.org> napísal: >According to Slavko via mailop <li...@slavino.sk>: >>Plausible deniability is good for cryptographers and lawyers only. For >>rest of world it is hard to find/realize, that private key was published >>(someone must complain). > >Not at all. Check the DKIM key record that validates the signature on this >message.
Interesting usage of n= tag ;-) Yes, it is better than nothing and simplifies task to find published keys, if one will check the record's value. Perhaps adding standardized tag with URI for this purpose can help with teaching users and/or admins to publish them, something as kpu= (aka Key Publish URI). Please, how many verification tools will show that by default? Are you preserving all old records (selectors) in DNS? And if yes, do you clear (revoke) their public key tag? regards -- Slavko https://www.slavino.sk/ _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop