IETF Logo Mail Archive

Re: [apps-discuss] Kathleen Moriarty's Discuss on draft-ietf-appsawg-sieve-duplicate-07: (with DISCUSS and COMMENT)

Stephan Bosch <stephan@rename-it.nl> Thu, 26 June 2014 08:13 UTC

Return-Path: <stephan@rename-it.nl>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 065291B2F2E; Thu, 26 Jun 2014 01:13:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.456
X-Spam-Level:
X-Spam-Status: No, score=-0.456 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, RP_MATCHES_RCVD=-0.651] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c1Gw3ngMvNu4; Thu, 26 Jun 2014 01:13:44 -0700 (PDT)
Received: from drpepper.rename-it.nl (drpepper.rename-it.nl [217.119.238.16]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B78B01B2AF1; Thu, 26 Jun 2014 01:13:43 -0700 (PDT)
Received: from klara.student.utwente.nl ([130.89.162.218]:59844 helo=[10.168.3.2]) by drpepper.rename-it.nl with esmtpsa (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16) (Exim 4.72) (envelope-from <stephan@rename-it.nl>) id 1X04oJ-0000K7-4l; Thu, 26 Jun 2014 10:13:41 +0200
Message-ID: <53ABD5EB.3080708@rename-it.nl>
Date: Thu, 26 Jun 2014 10:12:27 +0200
From: Stephan Bosch <stephan@rename-it.nl>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Barry Leiba <barryleiba@computer.org>
References: <20140623184900.17262.22283.idtracker@ietfa.amsl.com> <53A88421.60701@rename-it.nl> <CAHbuEH458e6eLZvF6OZUirVsrSaAbPGPj7GvsgX9tXdaU2X5_w@mail.gmail.com> <CALaySJLUePy5aRnm-fcrpuxdq6j61sNpc-zKtT73C7ZTyeF3WQ@mail.gmail.com> <53A8A7C5.80102@qti.qualcomm.com> <CALaySJ+Pa76JzPWZpstrDodVt1JzUZnNrwbBuZJqkMc8rknqcw@mail.gmail.com> <300281C7-B2DE-4419-984E-02F08EE32191@gmail.com> <CALaySJJcfDurV5DSRB+D2ag-UFMWQECWoYm6_FYVarSVDZm9FQ@mail.gmail.com> <8D7155B0-BC65-43A3-BE35-CB0CA702A358@gmail.com> <53A98428.106@qti.qualcomm.com> <CAHbuEH72Faro02y7Yy+mm=hjKrEmmhDcO5fkmY7o8_47SdH7cg@mail.gmail.com> <CALaySJK5Y2AJa-4_e9Wfgugjiua3oWB28fvNn8cqvrzUTivCcg@mail.gmail.com> <CAHbuEH7pwvGU3F+adJNJ9jgYdJvtbcbkadi305eN2sR_X7DhZg@mail.gmail.com> <53A9DBC1.9000301@rename-it.nl> <CALaySJJgcAzca94kjNZGTgsa1W7H=bTwX6nz9DfGmYPib34rZQ@mail.gmail.com> <53AA6DFF.9070008@rename-it.nl>
In-Reply-To: <53AA6DFF.9070008@rename-it.nl>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-RenameIT-MailScanner-SpamScore: -2.3 (--)
X-RenameIT-MailScanner-SpamCheck: No, score=-2.3 required=5.0 tests=ALL_TRUSTED, BAYES_00 autolearn=ham version=3.3.1
Archived-At: http://mailarchive.ietf.org/arch/msg/apps-discuss/3vq-uo7VoAKQbnaj-Od6J44VZO0
Cc: Apps Discuss <apps-discuss@ietf.org>, "appsawg-chairs@tools.ietf.org" <appsawg-chairs@tools.ietf.org>, "draft-ietf-appsawg-sieve-duplicate@tools.ietf.org" <draft-ietf-appsawg-sieve-duplicate@tools.ietf.org>, Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>, The IESG <iesg@ietf.org>, "ned+ietf@mrochek.com" <ned+ietf@mrochek.com>
Subject: Re: [apps-discuss] Kathleen Moriarty's Discuss on draft-ietf-appsawg-sieve-duplicate-07: (with DISCUSS and COMMENT)
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss/>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Jun 2014 08:13:48 -0000

Hi Kathleen, Barry,

On 6/25/2014 8:36 AM, Stephan Bosch wrote:
>>>>> Script writers using the duplicate test evaluation should be aware that
>>>>> Message-IDs are not necessarily unique either through the fault of
>>>>> benign
>>>>> generators or attackers at some point prior to the Sieve filter
>>>>> injecting a
>>>>> message with the properties used by the duplicate Sieve filter.  As
>>>>> such,
>>>>> script writers may opt to be conservative when considering actions taken
>>>>> on
>>>>> duplicate messages.
>>>> I'm OK with that almost as it is.  If we're really addressing
>>>> Message-IDs I think the last sentence would work better like this:
>>>>
>>>> "Therefore, scripts are well advised to be conservative with respect
>>>> to actions taken when duplicate messages are identified only by
>>>> Message-ID."
>>> I can agree with this text with Barry's modification, but where do you want
>>> to put this? At the end of Section 3 or in the Security Considerations? If
>>> it is best put in Section 3 I should merge it somehow with the last
>>> paragraph.
>> I think it's best to stick it into the Security Considerations.
> OK, will do.

Applied in -08.

Regards,

Stephan.

v2.23.0 | Report a Bug | By Email