[one-users] Sunstone noVNC with WSS support
valentin.bud at gmail.com
Tue Mar 11 09:21:20 PDT 2014
On Tue, Mar 11, 2014 at 6:07 PM, Stefan Kooman <stefan at bit.nl> wrote:
> Quoting Valentin Bud (valentin.bud at gmail.com):
> > I totally agree with you about the user experience and for it is worth
> > investing
> > a few dollars. I guess I am just frustrated that TLS fails to provide
> > to peer
> > trust.
> So I guess it's time (for you) to deploy DANE [1,2]. You do need to have
> DNSSEC enabled for your domain ... and still have to trust the (root)
> dns servers ... but that's already a big improvement if you ask me.
> Especially if you operate your own dnsservers and have control over the
> signing process.
You are absolutely right. We operate the DNS infrastructure and plan to
implement DNSSEC this year. We have a mix of public and private zones
and we are still researching the most simple way to get DNSSEC implemented.
Do you have any tips / recommandations for the above scenario?
Once I have DNSSEC up and running I will surely implement DANE :).
> : https://tools.ietf.org/html/rfc6698
> | BIT BV http://www.bit.nl/ Kamer van Koophandel 09090351
> | GPG: 0xD14839C6 +31 318 648 688 / info at bit.nl
http://databus.pro | valentin at databus.pro
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users