[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] HKP Spec Progress
From: |
David Shaw |
Subject: |
Re: [Sks-devel] HKP Spec Progress |
Date: |
Sun, 11 Jan 2015 23:05:50 -0500 |
On Jan 11, 2015, at 2:03 AM, Gabor Kiss <address@hidden> wrote:
>
>> I'm unable to find any updates beyond the original draft of
>> the OpenPGP HTTP Keyserver Protocol (HKP)[1]. Since the sks
>> keyservers are based on this protocol, are there any plans
>> on making progress in its adoption. It's been over 11 years,
>> so what can we do to get hkp finished?
>
> I think a dedicated port for HKPS would be useful.
This was discussed a while back, and given the shortage of ports, the
conclusion was not to assign a dedicated hkps port, but rather to assign a
service name ("pgpkey-https") that can be queried for using DNS-SD (SRV) that
gives the necessary port and (potentially helpfully) the leading path as well.
You get a form of load balancing for free, too.
The 11371 port is historical. For many uses "pgpkey-http" (the non-https
version) is better.
David