[Opendnssec-user] Default ZSK sizes

Ondřej Surý ondrej at sury.org
Wed Jan 25 11:20:41 UTC 2012


On Tue, Jan 24, 2012 at 22:31, Miek Gieben <miek at miek.nl> wrote:
>> Any opinions?
>
> I always get a bit sad because of these mails... If rsa is vulnerable

Why sad? I think it's useful to discuss this once in a while.  Also because
it looks like (for outsider) that cryptographers are like lawyers.  You ask
5 lawyers about something and you get 7 different opinions :).

And it had gathered quite few good points. Thanks to all involved.

> there are better targets than the DNS.

Like a key which signs 100.000+ domains?

O.
-- 
Ondřej Surý <ondrej at sury.org>



More information about the Opendnssec-user mailing list