On Thu, 24 Sep 2015, Simon Josefsson wrote:
Btw, how does draft-ietf-dane-openpgpkey handle OpenPGP keys for hostnames? I don't see anything in it. I propose that username<->hostname collisions for OpenPGP is a non-issue.
The key lookup part does not cover it, although of course the OPENPGPKEy record is not limited to be at a <hash of lhs> location. Per definition, hostnames in DNS can just be represented as hostnames without hashing, so one could simply use: mail.nohats.ca. IN OPENPGPKEY <blob> Paul