Am 2016-06-12 um 23:49 schrieb Rich Salz via RT:
> And DANE support is in 1.1/master.
>
Ok, thanks; will have to upgrade ...
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=3236
Please log in as guest with password guest if prompted
--
openssl-dev mailing list
To unsubscribe: http
Hi; that of course does not make sense without additional DANE support;
- that one of course needs to be implemented in OpenSSL.
Am 2016-06-12 um 19:32 schrieb Rich Salz via RT:
> There does not seem to be anything for OpenSSL to do here; it's about DNS
> libraries calling openssl to generate and
Webkit browsers and many other openssl based programs like ssh would already
like to make use of DNSSEC. AFAIK DNSSEC has already been standardized and
would therefore be free to be implemented by openssl. DNSSEC could overcome
many of the weaknesses in the current certificate management workfl
