IETF Logo Mail Archive

Re: [apps-discuss] I-D Action: draft-ietf-appsawg-nullmx-00.txt

Ned Freed <ned.freed@mrochek.com> Sun, 23 February 2014 03:37 UTC

Return-Path: <ned.freed@mrochek.com>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3A711A02AF for <apps-discuss@ietfa.amsl.com>; Sat, 22 Feb 2014 19:37:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.25
X-Spam-Level:
X-Spam-Status: No, score=0.25 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RP_MATCHES_RCVD=-0.548, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zQei1fi4LrVk for <apps-discuss@ietfa.amsl.com>; Sat, 22 Feb 2014 19:37:06 -0800 (PST)
Received: from mauve.mrochek.com (mauve.mrochek.com [66.59.230.40]) by ietfa.amsl.com (Postfix) with ESMTP id 835931A0294 for <apps-discuss@ietf.org>; Sat, 22 Feb 2014 19:37:06 -0800 (PST)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01P4O3B3PXCG0000UP@mauve.mrochek.com> for apps-discuss@ietf.org; Sat, 22 Feb 2014 19:32:37 -0800 (PST)
MIME-version: 1.0
Content-type: TEXT/PLAIN; CHARSET="iso-8859-1"
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01P4NWNVLF6800004W@mauve.mrochek.com> for apps-discuss@ietf.org; Sat, 22 Feb 2014 19:32:35 -0800 (PST)
Message-id: <01P4O3B2JHP800004W@mauve.mrochek.com>
Date: Sat, 22 Feb 2014 19:23:57 -0800
From: Ned Freed <ned.freed@mrochek.com>
In-reply-to: "Your message dated Wed, 19 Feb 2014 17:51:32 -0600 (CST)" <1417200617.105964.1392853892918.JavaMail.zimbra@peachymango.org>
References: <20140215090319.9948.37708.idtracker@ietfa.amsl.com> <WM!19bcdc3a1b5806838a1575dafbd4e67841a29bedc144c0cc6ab4d5ee6c38ce77d9ca87dc0734e3f926927896c4c6063e!@asav-2.01.com> <298464235.101520.1392846134250.JavaMail.zimbra@peachymango.org> <01P4JKS49U0U00004W@mauve.mrochek.com> <WM!d5f44d6e7a1db0740913ee8dd234301f661034af6b41e6465709eaa22294848ed3dcc916c49a2a97e381862d7973047b!@asav-1.01.com> <1417200617.105964.1392853892918.JavaMail.zimbra@peachymango.org>
To: apps-discuss@ietf.org
Archived-At: http://mailarchive.ietf.org/arch/msg/apps-discuss/HeHomEXyjHpVpMbl0OQKCkFpcbM
Subject: Re: [apps-discuss] I-D Action: draft-ietf-appsawg-nullmx-00.txt
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss/>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Feb 2014 03:37:08 -0000

> ----- Original Message -----
> > From: "Ned Freed" <ned.freed@mrochek.com>
> > To: "Franck Martin" <franck@peachymango.org>
> > Cc: apps-discuss@ietf.org
> > Sent: Wednesday, February 19, 2014 1:51:32 PM
> > Subject: Re: [apps-discuss] I-D Action: draft-ietf-appsawg-nullmx-00.txt
> >
> > > This draft requires current filtering solutions to change behavior. The
> > > presence of an MX will indicate the domain is emailable (cf spamassassin
> > > rules)
> > > until the software is changed to recognize the 0. We will have different
> > > behavior while this is getting implemented.
> >
> > The domain validity check is extremely weak to begin with. And given the
> > speed
> > at which such rules have to evolve for other reasons, even if you think this
> > deserves consideration - which I don't - it's a miniscule  factor in the
> > overall scheme of AS/AV solutions.

> It is in spamassassin and others,

Along with hundreds of other tests, rules, criteria, etc. etc.

> not sure the word miniscule "apply" here.

You're right - I was being overly generous by calling it minescule. Of no
real consequence would be a lot closer to the mark.

> Furthermore anything that weakens anti-spam measure should not be encouraged by
> a body like IETF, which wants to increase the security of the Internet.

Sorry, that's nothing short of absurd. There are a myriad of antispam 
mechanisms in play - so many that pretty much every action we take in regards
to email is going to have some impact somewhere.

Just to point out the elephant in the corner here, it's obvious that increased
use of end-to-end security is likely to have a seriously detrimental impact on
various antispam measures. Does this translate to such work being off the table
for the IETF. Clearly not.

> >
> > > The same functionality can be achieved with
> >
> > > example.com "v=SPF1 -all"
> > > *.example.com "v=SPF1 -all"
> >
> > It's not even remotely the same functionality. The point of the nullmx
> > mechanism is to inform agents *sending* messages to the domain that there's
> > no point in even bothering making a connection. To the best of my knowlege
> > nobody looks at SPF records for domain before attempting to send mail to
> > them.

> Well, in another RFC, every domain should have an abuse@ and postmaster@ this
> domain. This seems in conflict.

Others have pointed out that those other RFCs only apply to domains that
actually run mail servers.

> >
> > > Which would cover also any subdomain and will not have different
> > > interpretation while being deployed.
> >
> > If you're seriously proposing that SMTP clients start looking at SPF records,
> > that a MAJOR change that would be a major PITA to get deployed.
> >
> same as implementing this, it is a NS record lookup and special processing.

Incorrect. This is an added check of the result from the MX lookup that's
already being performed by every SMTP client out there. No additional lookups
are required.

				Ned

v2.23.0 | Report a Bug | By Email