Y
Hacker News
new
|
ask
|
show
|
jobs
by
brody_hamer
216 days ago
> a dns record that specifies the domain to use for oidc for emails on that domain.
Oooh I like this idea!
1 comments
8organicbits
216 days ago
Not a DNS record, no one uses dnssec so DNS is insecure. A .well-known path, with a TLS cert is better. Or a special subdomain, like MTA-STS uses.
link