Patrick Mevzek (npub1jxl…z9a2) thanks for pointing out, but what people use shouldn’t be a reference in general. There’re still many SSLv3 enabled systems out in the wild - just as an example 😉
According to the rfc 8624, ED25519 is recommended. But it still doesn’t mean that it’s usable in practicable way. 2022 many resolvers still lacked supporting it.
I also guess, once it got set up, no one cares about it anymore. And back in that time #ECDSA-P256 was probably the best choice. I was running in RSA and just took a look again when setting up the new infrastructure including dnssec-policy setup. I sticked to #ECDSA-P256 instead of #ED25519 now to make sure to have the best compatibility. Will do some more research and maybe switch at a later time again… :)
gyptazy
npub1qw…7q0ue
2024-03-05 08:17:53 UTC
in reply to nevent1q…0s7d
Author Public Key
npub1qw78tm5s6kez73ed5e89fy0g3n7p0hlga5sqamh3xf48zjtt7uwqa7q0uePublished at
2024-03-05 08:17:53 UTCEvent JSON
{
"id": "8d3ee60682948fe3b05b17faf839f2531f883a8e9e902717ff0c680b0b79b771",
"pubkey": "03bc75ee90d5b22f472da64e5491e88cfc17dfe8ed200eeef1326a71496bf71c",
"created_at": 1709626673,
"kind": 1,
"tags": [
[
"p",
"91be5c15af34e54c65b1489763bacda05c31b1b5046e0c077cb3ae148d211d85",
"wss://relay.mostr.pub"
],
[
"e",
"476f222e4f86945ddc831305047b4a8e369f20e984f788b6eadbe23bba8e6ae4",
"wss://relay.mostr.pub",
"reply"
],
[
"t",
"ecdsa-p256"
],
[
"t",
"ecdsa-p256"
],
[
"t",
"ed25519"
],
[
"proxy",
"https://gyptazy.ch/snac/gyptazy/p/1709626673.909582",
"activitypub"
]
],
"content": "nostr:npub1jxl9c9d0xnj5ced3fztk8wkd5pwrrvd4q3hqcpmukwhpfrfprkzs9kz9a2 thanks for pointing out, but what people use shouldn’t be a reference in general. There’re still many SSLv3 enabled systems out in the wild - just as an example 😉\n\nAccording to the rfc 8624, ED25519 is recommended. But it still doesn’t mean that it’s usable in practicable way. 2022 many resolvers still lacked supporting it.\n\nI also guess, once it got set up, no one cares about it anymore. And back in that time #ECDSA-P256 was probably the best choice. I was running in RSA and just took a look again when setting up the new infrastructure including dnssec-policy setup. I sticked to #ECDSA-P256 instead of #ED25519 now to make sure to have the best compatibility. Will do some more research and maybe switch at a later time again… :)\n",
"sig": "edf81006ba76234f8e625c7086fe1978d69e80fde7d4444c0bedb3360e46978687c0228c5ea892ebe91a618773698d8f8f3db9a971199b9adb3b27f9cc0625ad"
}